Description

This setting specifies the minimum security level for private keys that a BlackBerry® device uses for authentication methods that require client certificates.

Default value

The default value is Low security. A BlackBerry device prompts the user only once for the key store password. The BlackBerry device retrieves and stores, in unencrypted format, the private key with the VPN profile.

Usage

If you change this setting to High security, a BlackBerry device always prompts the user for the key store password when the BlackBerry device requires access to the private key. This might happen frequently, even if the user typed the password recently. Private keys are not stored with the VPN profile.

If you change this setting to Medium security, the BlackBerry device prompts the user for the key store password the first time only and, from that point forward, only prompts the user after the user resets the BlackBerry device. Private keys are cached in memory but are not stored with the VPN profile.

This rule is obsolete in BlackBerry® Enterprise Server version 4.1 SP4.

Minimum requirements

• Java® based BlackBerry device
• BlackBerry® Device Software version 4.2.1
• BlackBerry Enterprise Server version 4.1 SP3