Enabling Direct Update Authenticity checks
You can configure client applications to check the authenticity of a direct update package downloaded from the MobileFirst Server or CDN.
About this task
When you enable the Direct Update Authenticity feature, the direct update package is digitally signed during deployment. After the client has downloaded the package, it performs a security check on it to validate its authenticity. This means that if the direct update package has been altered or replaced, the client will not install it. Additionally, the client reports direct update authenticity failure to the MobileFirst Server. These reports appear in the server logs with a log level SEVERE. For more information, see Customizing the direct update interface and process.
The Direct Update Authenticity feature is not enabled by default. Follow the instructions below to enable this feature for new applications and for existing applications that have been upgraded. The instructions are for all supported environments