Import non-public certificates to BEMS
BEMS
- If necessary, verify theJavabin directory is correctly specified in your environment PATH.
- In a command prompt, typeset | findstr "JAVA_HOME".
- PressEnter.
- In the command prompt, typeset | findstr "Path"
- PressEnter.
Verify that the JAVA_HOME System variable is set to the correctJavadirectory and that the PATH System variable includes the path to the sameJavadirectory. For instructions about setting the JAVA_HOME and PATH system variables, see . - Obtain a copy of the non-public CA certificate from the server thatBEMSmust communiate with. For more information, contact your administrator of yourMicrosoft Exchange Server, , orMicrosoft SharePointservers.
- On theBEMShost, make a backup of theJavakeystore file. By default, theJavakeystore file is located at%JAVA_HOME%\lib\security\cacerts, where JAVA_HOME is confirmed in step 1.
- Copy the non-public CA certificate to theJavakeystore directory in step 3.
- Open a command prompt and change directory to theJavakeystore directory in step 3.
- Type the following command to import the non-public CA certificate into theJavakeystore:keytool -importcert -trustcacerts -alias <your_cert_alias> -file <your_cert>.cer -keystore cacerts -storepass changeit
- Whereyour_cert_aliasis the unique name that you are assigning the certificate in the cacerts file. This alias cannot already exist in the cacerts file.
- Whereyour_certis the file name of the non-public certificate. If this is the path to the file, add quotation marks (" ") around the full path, filename, and extension.
- Repeat Steps 2 to 6 for each non-public CA certificate.
- In theWindowsService Manager, restart theGood Technology Common Servicesservice.