|
BES 5.0 : How to allow untrusted HTTPS/TLS connection?
In BES4.1.6, from Blackberry MDSConnection Service -> Properties -> TLS/HTTPS , I can change
Allow Untrusted HTTPS connections = true Allow Untrusted TLS connections = true to make MDS set up connection to untrusted server. In BES5.0, Select "Blackberry solution topology-> Blackberry Domain -> MDS Connection Service" from the left panel, and click "Edit componect" in the right panel, Select HTTPS or TLS page, There are no similiar setting as BES 4.1.6. Instead, I must create a item for each Service URL. I Create one item both in HTTPS&TLS page like: ------- Name : my.compony.com ------- Frienddly description: enable untrusted tls to my.compony.com ------- Service URL: my.compony.com And set "Allow untrusted servers" to "Yes", But after restart mds instance, My BB still get connection error from MDS something like "invalid SSL connection" while My software on BB try to connect my.compony.com by SSLConnection. Does any one know how to allow untrusted https/tls connection in BES5.0? |
The screenshot of BB when the issue happens
2 Attachment(s)
In fact, the error message pops up on Blackberry is :
"The server returned the following error:"Access Denied: Insecure SSL request". When click "More Info" , BB pops message: "Your MDS has been configured to deny SSL requests to servers that have certificates which are untrusted or expired. Try using Device Side SSL which can be modified in your TLS Options. Contact your system administrators with any questions. " The problem is I have configured BES5.0 mds to allow untrusted tls/https, but seems mds still deny my BB's request. |
By design, you now have to define each website. I have personally submitted a feature change request to have this changed back to the behavior found in BES 4.x.
|
So to enable access to an internal server via port 4060, I would need to enter the following into the HTTPS tab on the MDS Connection Service:
https://<Servername>:4060 and set "allow untrusted servers" to yes Is that correct? This does not seem to be working, even after restarting services. Any help would be appreciated. We use this to remotely access and reboot our servers in a pinch. |
Has anyone figured this out?
|
If you specify the following regex pattern as the URL, and specify this to be trusted, this should allow all websites.
.*://.*(:\d*)?(/.*)*(\?.*)? |
The error I was getting was "The server returned the following error: Access Denied: Insecure SSL Reuest." <Click on More Info> "Your mds has been configured to deny ssl requests to servers that have certificates which are untrusted or expired. Try using Device Side SSL which can be modified in yout TLS options. Contact your system administrator with any questions."
I am getting this when trying to browse to an internal HTTPS site. I just called RIM about this issue. I am running 5.0 SP1 now and this is a known problem. There is no ETA on when it will be fixed and there is not a way to manage from the BES at this time. Here is a link to the work around... blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB20 833 |
|
Hi Peeps,
I am trying to viw this page and am getting error " The selected server returned an error when trying attempting to fulfil your request" https://m.chalknetwork.com/chalk/sig...rdownload.aspx Any idea? |
try this for BES 5.0.1
KB22536-BlackBerry Browser returns "Access Denied: Insecure SSL Request" error message when browsing the trusted HTTPS sites and for BES 4.1.7 KB20833-Unable to browse to HTTPS websites from the BlackBerry smartphone that use a certificate containing "Subject Alternative Name" 0 776462501 |
| All times are GMT -5. The time now is 06:32 PM. |
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.