- Deprecated:
- Since UEM 12.10, UCPs for app-based credentials are no longer supported. Native keystore UCPs are the recommended approach and enable the app to directly access user credentials within the device's key store without requiring importation of key material into the app.
This class is used to represent user identity electronic certificate credentials that are stored in the BlackBerry Dynamics secure store.
A user identity credential:
- Includes exactly one leaf certificate, also known as the user client certificate.
- May include auxiliary intermediate certificates that represent the chain of trust from the leaf to a Certificate Authority (CA).
The auxiliary certificates don't include a certificate for the trusted root CA itself.
These credentials are part of the BlackBerry Dynamics app-based User Credentials Profile (UCP) configuration.
- See also
- com.good.gd.pki package reference for an introduction to the UCP feature.
|
static String | importPKCS12 (byte[] pkcs12, String pkcs12Password) throws CredentialException |
| Import electronic certificate credentials from a PKCS #12 file to an app-based UCP determined by BlackBerry Dynamics. More...
|
|
static void | importPKCS12 (byte[] pkcs12, String pkcs12Password, String profileId) throws CredentialException |
| Import electronic certificate credentials from a PKCS #12 file to the specified app-based UCP. More...
|
|
static String | importPEM (byte[] pem, String keyPassword, String profileId) throws CredentialException |
| Import an electronic certificate credential from PEM data to an app-based UCP. More...
|
|
static void | finalizeImport () |
| Finalize credential import. More...
|
|
static void | undoImport (String profileId) throws CredentialException |
| Remove all credentials for a given User Credential profile. More...
|
|
static List< Credential > | getCredentials (String profileId) |
| Return the credentials managed by a given User Credential profile. More...
|
|
static Credential | find (String issuer, String serial) throws CredentialException |
| Find a credential. More...
|
|
static void | remove (String issuer, String serial) throws CredentialException |
| Remove a credential. More...
|
|
Call this method to import credentials from a PKCS #12 file into the secure store.
The file must contain the leaf certificate, also known as the user certificate, and its matching private key. In addition, it may also contain auxiliary or intermediate certificates. The file mustn't contain multiple keys, nor any inapplicable certificates.
The credential will be associated with a User Credentials Profile (UCP) from the managment console. An identifier for the associated UCP will be returned by this method.
After calling this method:
- Call it again, or call a different import method, if there are more credentials to import.
- Call finalizeImport() to finalize.
After finalization, the BlackBerry Dynamics runtime will:
- Use the credentials in the application that imported them.
- Share the credentials with other BlackBerry Dynamics applications activated by the same end user on the same device, if permitted by policy.
- Enable management of the credentials in the enterprise BlackBerry Dynamics management console.
- Parameters
-
pkcs12 | byte array containing the PKCS #12 file to be imported. |
pkcs12Password | String containing the password of the PKCS #12 file. |
- Returns
String
containing the identifier of the UCP with which the credential was associated.
- Exceptions
-
static void finalizeImport |
( |
| ) |
|
|
static |
Call this function to finalize import of credentials, for example after calling one of the import methods, above. Also call this method if import was cancelled.
A credentials import could be in response to a request for credentials from another application. In that case, the user interface will have flipped to the importing application at the time of the request. Calling this function then causes the user interface to flip back to the requesting application.