3.13.1 Procedure for setting up the APNs server's root certificate for SSL communication on the communication server (when managing iOS devices)
On the communication server, set up the root certificate for SSL communication for the APNs server. You need to perform this procedure only when managing iOS devices.
Procedure
-
Execute the following command to install the root certificate:
"JP1/ITDM2 - SDM (Communication Server)-installation-folder\cms\uC\jdk\bin\keytool.exe" -importcert -alias alias-name# -file certificate-path -keystore "JP1/ITDM2 - SDM (Communication Server)-installation-folder\cms\uC\jdk\jre\lib\security\cacerts" -storepass changeit
To check the installed root certificate, execute the following command:
"JP1/ITDM2 - SDM (Communication Server)-installation-folder\cms\uC\jdk\bin\keytool.exe" -list -v -storepass changeit -keystore "JP1/ITDM2 - SDM (Communication Server)-installation-folder\cms\uC\jdk\jre\lib\security\cacerts"
To delete the certificate from the keystore, execute the following command:
"JP1/ITDM2 - SDM (Communication Server)-installation-folder\cms\uC\jdk\bin\keytool.exe" -delete -alias alias-name# -keystore "JP1/ITDM2 - SDM (Communication Server)-installation-folder\cms\uC\jdk\jre\lib\security\cacerts" -storepass changeit
#: You can specify any alias name.
- Important
-
If the keytool.exe command ends abnormally, the keystore file might be set to read-only. In this case, cancel the read-only attribute of the keystore file, and then re-execute the command.
The following shows the path to the keystore file and how to cancel the read-only attribute.
Keystore file path:"JP1/ITDM2 - SDM (Communication Server)-installation-folder\cms\uC\jdk\jre\lib\security\cacerts"
-
Right-click the keystore file, and then select Properties.
-
On the On the General tab, clear the Attributes check box for Read-only.
-
Click OK.
-
Related Topics