Skip Navigation
  1. BlackBerry Docs
  2. BlackBerry Enterprise Mobility Server 3.5
  3. Configuring BEMS-Core
  4. Importing and configuring certificates
  5. Assign the BEMS SSL certificate to users

Assign the
BEMS
 SSL certificate to users

By default,
BEMS
 uses a self-signed certificate that is generated by the
BEMS
 installer. If the
BEMS
 SSL certificate is CA signed, export the CA root and intermediates as described in Replacing the autogenerated SSL certificate.
  1. Complete one of the following actions:
    Environment
    Tasks
    If you have a
    BlackBerry UEM
     environment,
    1. If the
      BEMS
       SSL certificate has not been replaced, export the SSL certificate to a file.
      1. In the
        BlackBerry Enterprise Mobility Server Dashboard
        , under
        BEMS System Settings
        , click
        SSL Certificate
        .
      2. Click
        Download SSL Certificate
        . By default, the BemsCert.cer file is saved to the Downloads folder.
    2. Create a CA certificate profile for the
      BEMS
       Self-Signed certificate,or create individual CA certificate profiles for the CA Root certificate and any CA Intermediate certificates. Assign the profiles to users or user groups. For instructions on creating a CA certificate profile and assigning it to users or user groups, see the
      BlackBerry UEM
       administration content      .
    If you have a
    Good Control
     environment,
    Add the certificates to the Trusted Authorities tab. For instructions, see the "Trusted Authorities tab" in the Good Control Online Help content.