Skip Navigation
  1. BlackBerry Docs
  2. BlackBerry Web Services 12.10
  3. Blackberry Web Services Development Guide
  4. Creating a keystore for your applications
  5. Generate a keystore and import the SSL certificate into the keystore

Generate a keystore and import the SSL certificate into the keystore

You can use the keytool utility to generate a keystore for your applications, and to import the SSL certificates of the
BlackBerry UEM
 domain into the keystore. Your applications use the certificates to make SSL connections to the
BlackBerry Web Services
 SOAP APIs. Ensure that you include the entire chain in the keystore. For example: root, intermediate, and the key.
  1. Run the command prompt as an administrator.
  2. Navigate to the bin folder of the active JRE. For example: 
    cd C:\Program Files\Java\jre8\bin
  3. If you upgraded
    BES12
     version 12.3 to
    BES12
     version 12.5 or
    BlackBerry UEM
     version 12.6 or later, and you previously downloaded and installed the SSL certificate into the keystore, you must delete the existing certificate before you perform this step.
    Type
    keytool -import -trustcacerts -file
    <cert_file_path>
     -keystore
    <keystore_name>
     -storepass
    <password>
     -alias
    <cert_alias>
    , where
    <cert_file_path>
     is the full path where you stored the SSL certificate,
    <keystore_name>
     is the name you want to specify for the keystore,
    <password>
     is the password you want to specify for the keystore, and
    <cert_alias>
     is an alias name you want to specify for the certificate. For example:
    keytool -import -trustcacerts -file C:\Temp\BWS\bescert.cer -keystore 
bes.keystore -storepass password -alias bes
    Repeat this step for each certificate in the keychain as needed, and give each certificate a different alias.
  4. Press ENTER.
  5. When asked if you want to trust this certificate, type
    y
    . Press ENTER.
    A message confirms that the certificate was added to the keystore.