Export the BlackBerry Proxy or Good Proxy CA certificate chain to your desktop Skip Navigation

Export the
BlackBerry Proxy
or
Good Proxy
CA certificate chain to your desktop

If your environment enforces the use of SSL certificate validation when
BEMS
communicates with
BlackBerry Dynamics
, you must export the root and intermediate
BlackBerry UEM
or
Good Control
certificate chains used by the
BlackBerry Proxy
or
Good Proxy
and import them into the
BEMS
Java
keystore or upload them into the
BEMS
database using the
BEMS
Dashboard.
The following task is not browser-specific. For specific instructions, see the documentation for the browser you are using in
Mozilla Firefox
,
Windows Internet Explorer
,
Microsoft Edge
, or
Google Chrome
. If you encounter issues when exporting the certificate, visit support.blackberry.com/community to read article 64803.
  1. In a browser, enter the FQDN of the
    BlackBerry Proxy
    or
    Good Proxy
    server and port 17433 (for example,
    https://<
    Proxy_server_FQDN>
    :17433
    ). You may see a certificate error message because the certificate might be signed by the
    BlackBerry UEM
    or Control CA or another internal CA, but the browser does not recognize it as a well-known CA.
  2. To open the Certificate dialog, click the certificate icon in the URL field.
  3. Click
    Certificate (Invalid)
    .
  4. Click
    Certification Path
    .
  5. Click the root certificate. The root certificate is the first item in the Certificate hierarchy.
  6. Click
    View Certificate
    .
  7. Click the
    Details
    tab.
  8. Click
    Copy to File
    .
  9. Click
    Next
    .
  10. Select
    Base-64 encoded X.509 (.CER)
    .
  11. Click
    Next
    .
  12. Enter a name for the certificate and export it to your desktop.
  13. Click
    Save
    .
  14. Click
    Finish
    .
  15. Click
    OK
    .