Manualshelf

User guide

ManualsBrandsBlackberry ManualsComputer equipmentENTERPRISE SOLUTION SECURITY - SECURITY FOR DEVICES WITH BLUETOOTH WIRELESS TECHNOLOGY - TECHNICAL
101102103104105106107108109110
Custom Microsoft Certificate Authority Certificate Template
Distinguished Name Components
Key Algorithm
Key Length
Microsoft Certificate Authority Certificate Template
RSA Certificate Authority Certificate ID
RSA Jurisdiction ID
A certificate enrollment process does not delete the existing certificate from the device key store or notify the certification
authority that the certificate is no longer in use. The BlackBerry Enterprise Server deletes the existing certificate from the
BlackBerry Configuration Database when the certificate enrollment process starts for a new certificate.
Also, if a certificate is expired or revoked, you or a BlackBerry device user can update the certificates on the device using
the certificate synchronization tool in the BlackBerry Desktop Software or by copying an updated certificate from a media
card or smart card.
For more information about deleting or revoking certificates, see the user guide for the device.
Determining the status of certificates using
a CRL or OCSP
To determine the status of a certificate, you can configure the BlackBerry MDS Connection Service to access CRL servers
and OCSP servers on behalf of a BlackBerry device. The BlackBerry MDS Connection Service can retrieve the status of the
certificate and provide the status to the device.
For more information about configuring the CRL servers and OCSP servers that the BlackBerry MDS Connection Service
uses to retrieve the status of certificates, see the BlackBerry Enterprise Server Administration Guide. For more information
about certificate status indicators, see the user guide for the device.
Security Technical Overview Managing certificates on a device
106