Welcome!

Welcome to the Official BlackBerry Support Community Forums. This is your resource to discuss support topics with your peers, and learn from each other. New to the forum? Please visit the ‘Getting Started’ link below.
All New Topics | All New Posts
inside custom component

Java Development

Reply
Topic Options
New Developer
New Developer
pankaj
Posts: 7
Registered: ‎03-09-2009

how to add certificate to trusted key store of blackberry ??

Options

‎03-09-2009 06:34 AM

hi,

i am trying to devlop an app which tries to installs certs OTA for blackberry.

 

i used keystore.set method obtaining a ticket of device key store and added certificates to device. but even the root certificate is showing a red cross mark. i do not want to go and explictly trust the certificate from main menu. is there any way i can add the root certificate to trusted key store or mark it trusted from the code itself..

i need this by end of wednesday..can anyone help...

 

Thanks

Pankaj soni

Report Inappropriate Content
Message 1 of 9 (12,965 Views)
Reply
0 Likes
Please use plain text.
 
Administrator
Administrator
MSohm
Posts: 12,957
Registered: ‎07-09-2008
My Carrier: Bell

Re: how to add certificate to trusted key store of blackberry ??

Options

‎03-13-2009 09:42 AM

Applications can programmatically add certificates to the key store.  However, it is up to the user to mark them as trusted.
Mark Sohm
BlackBerry Development Advisor

Please refrain from posting new questions in solved threads.
Found a bug? Report it using the Issue Tracker
Report Inappropriate Content
Message 2 of 9 (12,887 Views)
Reply
0 Likes
Please use plain text.
 
New Developer
New Developer
pankaj
Posts: 7
Registered: ‎03-09-2009

Re: how to add certificate to trusted key store of blackberry ??

Options

‎03-16-2009 01:52 AM

Thanks for the reply,i wasted alot of time getting it to be trusted internally from code but from your repy it seems that this has been bloacked to third party apps which is a good security measure.

 

NOW, after trusting the root certificate explicitly i navigate to the keystore, there certificate is marked with a question mark instead of a green check. I click on fetch status, it errors out saying internet provider's error.

 

Is this a hindrance to my application and why it is not able to read certificate status completely.

 

Any thoughts??

 

Pankaj Soni

Report Inappropriate Content
Message 3 of 9 (12,856 Views)
Reply
0 Likes
Please use plain text.
 
Administrator
Administrator
MSohm
Posts: 12,957
Registered: ‎07-09-2008
My Carrier: Bell

Re: how to add certificate to trusted key store of blackberry ??

Options

‎03-20-2009 10:07 AM

How was the certificate installed?  Do you only see this behaviour when programmatically installing the certificate or does it occur in all situations?  Is this a public certificate I could test? What BlackBerry Smartphone model and BlackBerry handheld software version are you testing on?  You can find this under Options, About on the BlackBerry Smartphone.  Is the BlackBerry handheld on a BlackBerry Enterprise Server?
Mark Sohm
BlackBerry Development Advisor

Please refrain from posting new questions in solved threads.
Found a bug? Report it using the Issue Tracker
Report Inappropriate Content
Message 4 of 9 (12,836 Views)
Reply
0 Likes
Please use plain text.
 
New Developer
New Developer
pankaj
Posts: 7
Registered: ‎03-09-2009

Re: how to add certificate to trusted key store of blackberry ??

Options

‎03-24-2009 04:56 AM

No, the certificate is a is my own gernerated by using open ssl and bb api's. Problem only occurs when my application tried to install the certificate.

 

Now, when i click on fetch status button it fetches status and green check comes, for that i needed to modify my server to host crl. But isnt thier any api which can mimick this fetch status button's job. i want to avoid excess steps for bb users.

Report Inappropriate Content
Message 5 of 9 (12,769 Views)
Reply
0 Likes
Please use plain text.
 
New Developer
New Developer
pankaj
Posts: 7
Registered: ‎03-09-2009

Re: how to add certificate to trusted key store of blackberry ??

Options

‎03-24-2009 09:49 AM

if i place the certificate status as good programatically it says revocation status is:

 

Good

if i use fetch status it says:
 
Good on Wed, Mar 11, 2009 4:38:44 PM
 
why this difference?

 

Report Inappropriate Content
Message 6 of 9 (12,760 Views)
Reply
0 Likes
Please use plain text.
 
New Developer
New Developer
sougatasen
Posts: 18
Registered: ‎04-29-2009

Re: how to add certificate to trusted key store of blackberry ??

Options

‎09-30-2009 07:42 AM

Hi Pankaj,

                   Can you give me some pointers towards a sample code to Install Certificates Programmatically in Blackberry using the keystore class ??

 

Thanks.

 

 

    

Report Inappropriate Content
Message 7 of 9 (11,446 Views)
Reply
0 Likes
Please use plain text.
 
dcdel
Contributor
dcdel
Posts: 13
Registered: ‎06-18-2009

Re: how to add certificate to trusted key store of blackberry ??

Options

‎04-28-2010 04:28 AM

Hi Mark,

 

I am having the same issue,

 

1 Need to update the certificate status explicitly ( that is fine as you replied.)

2 After explicitly trusting the certificate, it shows me a ? with Orange color (for sure its not GREEN).

3 when i visit my website, the browser is not able to find the client certificate when asked. it return a dialog saying "the connection requested a client certificate for authentication. one could not be found on the device would you like to continue?" with options yes, no and dont ask again.

 

I am using the blackberry curve 8520 os version 4.6.1.314(Platform 4.2.0.135).

 

The certificate i installed using Blackberry Desktop manager "Sync Certricates" option and its in .pfx format.

 

guys please help me on this critical issue.

 

thanks

DC

 

 

Report Inappropriate Content
Message 8 of 9 (8,384 Views)
Reply
0 Likes
Please use plain text.
 
dcdel
Contributor
dcdel
Posts: 13
Registered: ‎06-18-2009

Re: how to add certificate to trusted key store of blackberry ??

Options

‎07-18-2010 04:18 AM

I solved this issue by installing the root certificate and a intermediate certificate. as they were self signed..now they are picked up by the HTTPS connection while searching for the client certificate.

Report Inappropriate Content
Message 9 of 9 (6,968 Views)
Reply
0 Likes
Please use plain text.