Import the BlackBerry Proxy CA certificate into the Java keystore on BEMS
BlackBerry Proxy
CA certificate into the Java
keystore on BEMS
Save a copy of the certificate that you exported to a convenient location on the computer that hosts
BEMS
(for example, C:\bemscert). For instructions, see Export the BlackBerry Proxy CA certificate chain to your desktop. - On the computer that hostsBEMS, verify theJavadirectory is specified in the JAVA_HOME system environment variable. In a command prompt, change to the %JAVA_HOME% folder. Typecd %JAVA_HOME%. For more information, see Set an environment variable for the Java location in the installation content.
- Make a backup of theJavakeystore file. TheJavakeystore file is located at%JAVA_HOME%\lib\security\cacerts, where JAVA_HOME is confirmed in Step 1.
- Import the exportedBlackBerry ControlorBlackBerry Proxyroot certificate. In a command prompt, typebin\keytool.exe -importcert -trustcacerts -file"<drive>:\bemscert\bproot.cer" -keystore lib\security\cacerts -alias gdca -storepass changeitThe -alias value must be unique in the destination keystore. If it is duplicated, you might experience import errors. You can output the cacerts keystore to a text file to manually confirm the existing certificates using a text editor. Typebin\keytool.exe -list -v -keystore lib\security\cacerts > c:\bemscert\cacertsoutput.txtFor more information about keystore commands, see Keystore commands.If you do not specify the -keystore parameter correctly or omit it, the keytool creates a new keystore.BEMSservices do not use the new keystore.”
- If you did not import theBlackBerry Controlroot certificate into theWindowskeystore, import it now. For instructions, see Import the Good Proxy or BlackBerry Proxy CA certificate to the BEMS Windows keystore.
- Restart theGood Technology Common Servicesservice in theWindowsService Manager.
Configure the Core
BEMS
service for communicating to BlackBerry
Dynamics
. For instructions, see Configure the BlackBerry Dynamics server in BEMS.