Help Center

Local Navigation

VPN Minimal Certificate Encryption Key Security Level IT policy rule

Description

This rule specifies the minimum security level for private keys that a BlackBerry® device uses for authentication methods that require client certificates.

Default value

The default value is Low security. A BlackBerry device prompts the user only once for the key store password. The BlackBerry device retrieves and stores, in unencrypted format, the private key with the VPN profile.

Usage

If you change this rule to High security, a BlackBerry device always prompts the user for the key store password when the BlackBerry device requires access to the private key. This might happen frequently, even if the user typed the password recently. Private keys are not stored with the VPN profile.

If you change this rule to Medium security, a BlackBerry device prompts the user for the key store password the first time only and, from that point forward, only prompts the user again after the user resets the BlackBerry device. Private keys are cached in memory but are not stored with the VPN profile.

Minimum requirements

  • Java® based BlackBerry device
  • BlackBerry® Device Software version 4.2.2
  • BlackBerry® Enterprise Server version 4.1 SP4

Was this information helpful? Send us your comments.