Self-Signed certificate install on iPad - ios

I have two servers on which I will access from an iPad using https.
Server-A website is in IIS.
Server-B website is Java.
I have created two self-signed certificates,
one for server-A using OpenSSL
and one for Server-B using keytool.
When I install the certificates on the iPad, the OpenSSL created certificate installs fine and becomes verified, and I can connect successfully on Server-A website using https.
However the self-signed certificate created with keytool stays "not verified" after I install it on the iPad.
Can anyone help me diagnose or fix this issue? thanks.

Related

Swift - The certificate for this server is invalid

How can I fix this on iOS using Swift? When I'm making a server request I get the following error:
The certificate for this server is invalid. You might be connecting to a server that is pretending to be “...” which could put your confidential information at risk.
You just need to install the certificates on the iOS simulators
From Charles Documentation:
Quit your iOS Simulator. Launch Charles and go to the Help menu.
Choose the "SSL Proxying > Install Charles Root Certificate in iOS
Simulators" item. This will install your Charles Root Certificate into
all of your iOS Simulators. Now when you start the iOS Simulator, you
should be able to access SSL websites with Charles using SSL Proxyin
You are most probably trying to connect to server with self-signed ssl certificate. iOS does not like it.
Take a look at this post as an example: Swift SSL error with self signed certificate.
Other possible issue is a proxy configuration with something like Charles behind it.
More details will maybe help to identify the root of the issue...

OTA deploy with certificate error for iOS8

I have a certificate problem when install app with OTA deployment site in intranet.
The OTA site is not SSL, it works fine with iOS 6.x, but it just failed to install in iOS 8 with certificate problem.
We don't use MDM for deployment and I have tried to use self-signed certificate to build a SSL OTA site, but it still failed.
I want to ask if there is any advise to fix this problem?
Thank you very much!
You have to use a real SSL certificate with new iOS versions. Using self-made certificate might work if you install it on the devices, but I haven't tried this.
Note that the actual ipa doesn't have to be on a SSL secured site, only the plist file. And you could use 3rd party file storing services to host that file and have the ipa on another server.

Web server - IOs Developer Enterprise Program

we're newbies in the development for IOs. We need to build an app for use in an Iphone. The app is private. Based in the official docs, we decided get the certificate for "IOs Developer Enterprise Program".
According the docs (please correct if i'm wrong), our apps need this to run:
1 Certificate for the enterprise (provided by apple when the contract is signed)
1 Certificate for distribution
1 Profile for distribution
Install the certificates in a server (third party, or ours own)
In a lot of youtube videos the developers build the certificates from a equipment with OSX.
Now my question. Once we have all the certificates, Can We install those into any private server independently of the plataform?. For example in a linux with Apache, Ngix or a Windows Server with IIS, or the only works if the server is a Mac with Mac OS X ...?
That's all. Sorry for my english. Any help will be appreciated.
You could deploy a App with any Webserver. You will get an Path for the Filename, and if you load this into your Safari from your device, you are able to install the App.
Check out more here:
https://developer.apple.com/programs/ios/enterprise/gettingstarted/
And this here for Deployment Strategies:
http://www.apple.com/iphone/business/it/deployment.html

Continuous Integration with iOS 7.1 - can't install the product linked on the server

We've been running CI with Xcode 5.0 for some time with no issue. Now iOS 7.1 has been released it seems to install the products that the CI produces you need to be on https but it seems that self signed certs are ok.
I have switched to https (self-signed) which loads the bot page fine, but when you go to install the product from the link it says cannot connect to server
Trying to install it on http causes the error Cannot install applications because the certificate for 'server' is not valid..
Do I have to get a proper certificate or am I doing something wrong with the self signed cert?
It seems it's the same problem although it needs to be signed with your own CA authority rather than just a self signed certificate.
For instructions on how to do this follow the instructions here.

Debug BlackBerry App SSL Certificate Problems

We are testing a BlackBerry app that accesses a secure RESTful service.
One of our customers is getting an "Access Denied: Insecure SSL Request" error when trying to access our web service. The customer device is running OS6. We have not been able to reproduce this with an OS6 simulator. The cert is installed on the simulator that matches his device.
We have seen similar cert problems with OS5 devices and simulators. We are using a Root Level Certificate (Thawte Primary CA) that is not installed on BlackBerry OS5. We have been able to solve similar problems on the OS5 devices by manually installing the certificate.
The manual cert install fix works for accessing the service from the OS6 devices' browser, but we get a "Access Denied: Insecure SSL Request" error when trying a https operation from our app. We are not able to reproduce this on any of our devices.
Questions:
Does the "Access Denied: Insecure SSL Request" error indicate the customer's device isusing the BlackBerry Enterprise Server? All google results for this error indicate the BES.
This cert has a wildcard that points to our many sub-domains. Could switching to a cert that explicitly points to the problem domain solve this? We recently changed our certs, but they work fine on iOS, Android, IE, FireFox & Chrome.
Any there any code changes we can make to fix this? We are creating the connection using the HttpsConnection. We are developing using the Java 5.0 libaray.
What other steps would you recommend for trying to track down this problem?

Resources