Permitting push applications to make trusted connections to a BlackBerry MDS Connection Service
To permit push applications to make trusted connections to a BlackBerry MDS Connection Service, you must create the webserver.keystore file on the computer that hosts the BlackBerry MDS Connection Service. This keystore stores the BlackBerry MDS Connection Service certificate and permits a BlackBerry MDS Connection Service to accept HTTPS connections from push applications.
Push applications can use a BlackBerry MDS Connection Service certificate to open HTTPS connections to the BlackBerry MDS Connection Service to push application data and application updates to the BlackBerry devices that are assigned to that BlackBerry MDS Connection Service.
Push applications can use the self-signed certificate that is generated when you create the keystore or you can use the Java keytool to add a signed certificate from a trusted public CA to the keystore. You must use the Java keytool to export the BlackBerry MDS Connection Service certificate from the keystore and import the certificate to the keystores that the Java push applications use.
For more information about using the Java keytool, visit java.sun.com/javase/6/docs/technotes/tools/windows/keytool.html. For more information about the requirements, visit tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html.
- Create a keystore to store certificates for use with HTTPS connections
- Add a certificate for the BlackBerry MDS Connection Service
- Export the BlackBerry MDS Connection Service certificate to make it available to push applications
- Import the BlackBerry MDS Connection Service to the keystore of a push application