03-09-2009 06:34 AM
i am trying to devlop an app which tries to installs certs OTA for blackberry.
i used keystore.set method obtaining a ticket of device key store and added certificates to device. but even the root certificate is showing a red cross mark. i do not want to go and explictly trust the certificate from main menu. is there any way i can add the root certificate to trusted key store or mark it trusted from the code itself..
i need this by end of wednesday..can anyone help...
03-13-2009 09:42 AM
03-16-2009 01:52 AM
Thanks for the reply,i wasted alot of time getting it to be trusted internally from code but from your repy it seems that this has been bloacked to third party apps which is a good security measure.
NOW, after trusting the root certificate explicitly i navigate to the keystore, there certificate is marked with a question mark instead of a green check. I click on fetch status, it errors out saying internet provider's error.
Is this a hindrance to my application and why it is not able to read certificate status completely.
03-20-2009 10:07 AM
03-24-2009 04:56 AM
No, the certificate is a is my own gernerated by using open ssl and bb api's. Problem only occurs when my application tried to install the certificate.
Now, when i click on fetch status button it fetches status and green check comes, for that i needed to modify my server to host crl. But isnt thier any api which can mimick this fetch status button's job. i want to avoid excess steps for bb users.
03-24-2009 09:49 AM
if i place the certificate status as good programatically it says revocation status is:
09-30-2009 07:42 AM
Can you give me some pointers towards a sample code to Install Certificates Programmatically in Blackberry using the keystore class ??
04-28-2010 04:28 AM
I am having the same issue,
1 Need to update the certificate status explicitly ( that is fine as you replied.)
2 After explicitly trusting the certificate, it shows me a ? with Orange color (for sure its not GREEN).
3 when i visit my website, the browser is not able to find the client certificate when asked. it return a dialog saying "the connection requested a client certificate for authentication. one could not be found on the device would you like to continue?" with options yes, no and dont ask again.
I am using the blackberry curve 8520 os version 184.108.40.2064(Platform 220.127.116.11).
The certificate i installed using Blackberry Desktop manager "Sync Certricates" option and its in .pfx format.
guys please help me on this critical issue.
07-18-2010 04:18 AM
I solved this issue by installing the root certificate and a intermediate certificate. as they were self signed..now they are picked up by the HTTPS connection while searching for the client certificate.