Replacing the autogenerated SSL certificate Skip Navigation

Replacing the autogenerated SSL certificate

By default,
BEMS
is remotely accessible using HTTPS only. During installation, a
BEMS
Java
keystore called bems.pfx is created and located in
<
drive
>\Program Files\BlackBerry\BlackBerry Enterprise Mobility Server\Good Server Distribution\gems-quickstart-<
version
>\etc\keystores\
. If you previously replaced the self-signed certificate, then your existing certificate and certificate password are retained. You can replace the previously self-signed certificate using a SAN certificate or a Wildcard server certificate and assign the certificate to be used by all nodes in a cluster. When you replace the previously self-signed certificate with a SAN or Wildcard server certificate, makes sure that the certificate is trusted by all
BlackBerry Dynamics
apps that communicate with
BEMS
on port 8443.