UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The key store password for the certificate that the BlackBerry Administration Service (BAS) and Blackberry Web Desktop Manager (BWDM) use must be changed from the default. This check applies only to BES 5.x.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22164 WIR1355-02 SV-25764r2_rule ECWN-1 Low
Description
The key store password protects the server digital authentication certificates from unauthorized use.
STIG Date
BlackBerry Enterprise Server, Part 2 Security Technical Implementation Guide 2011-07-14

Details

Check Text ( C-27174r1_chk )
Determine if the BAS and BWDM key store password have been changed from the default. The password must meet the requirements of CTO 07-15Rev1: 15 characters in length and the password complexity is a case-sensitive character mix of upper case letters, lower case letters, numbers, and special characters, including at least one of each.

-Start > Programs > Blackberry Enterprise Server > BlackBerry server Configuration.

-On the Administration service – Cacerts keystore tab, check the length of the current password and ask the BES admin if a complex password was used.

Mark as a finding if either the length or complexity requirements are not met.
Fix Text (F-23382r1_fix)
The key store password for the certificate that the BlackBerry Administration Service (BAS) and Blackberry Web Desktop Manager (BWDM) use must be changed from the default.