Help Center

Local Navigation

Wi-Fi Minimal EAP-TLS Certificate Encryption Key Security Level IT policy rule

Description

This rule specifies the minimum security level for a private key that an EAP authentication method (for example, EAP-TLS) uses with a client certificate.

The previous name of this rule was WLAN Minimal EAP-TLS Certificate Encryption Key Security Level.

Default value

The default value is Low security. A BlackBerry® device prompts a user only once for the key store password so that the BlackBerry device can retrieve the private key and encrypt messages. The BlackBerry device stores the unencrypted private key with the Wi-Fi® profile.

Usage

If you change the value to Medium security, the BlackBerry device prompts a user only once for the key store password so that the BlackBerry device can retrieve the private key and encrypt messages. After the BlackBerry device retrieves the private key, the BlackBerry device only retrieves the private key again after the user resets the BlackBerry device. The BlackBerry device caches the private key in memory but does not store it with the Wi-Fi profile.

If you change the value to High security, the BlackBerry device always prompts the user for the key store password when it accesses the private key and encrypts messages. The BlackBerry device does not store the unencrypted private key with the Wi-Fi profile.

This rule is obsolete in BlackBerry® Enterprise Server version 4.1 SP4 and later.

Minimum requirements

  • Java® based BlackBerry device
  • BlackBerry® Device Software version 4.0
  • BlackBerry Enterprise Server version 4.0 SP1

Was this information helpful? Send us your comments.