-
Notifications
You must be signed in to change notification settings - Fork 125
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature Request: Root CA certificate import #61
Comments
Certificates can be embedded in the launcher code. To embed certificates into Headwind MDM launcher, you need to do the following:
Note that downloading certificates from some URL is not safe so it's not done that way. |
@h-mdm, I've just used new cerificate embedding and it works fine, but I have a problem with opening websistes in In Logcat, there's an info: Chrome opens this website correctly as trusted. Can I do something with this? |
I guess you can't use just a single self-signed certificate, but you need a chain of at least two certificates, so the "root" certificate is embedded as trusted, and a second one is used by a website. |
If Chrome trust the certificate, other web clients should trust it as well. Probably the Android component WebViewClient has a bug and it doesn't trust the certificates registered by an MDM app. Anyway, you can rebuild the kiosk browser and ignore the SSL error: https://stackoverflow.com/questions/33825696/android-error-in-webview-loadurl-trust-anchor-for-certification-path-not-fou |
Yea, I thought about rebuilding, but I couldn't find repo of Kiosk Browser what made me thinking that it's private. |
Please contact the technical support https://h-mdm.com/contact-us/ |
I've made the decision to leave it like it is. I mean, without SSL. |
Hi!
Is it possible to add function to import CA certificate into Android Cert Store?
It would be best for self signed certificates used in internal SSL websites.
For now, Android require screen lock to import certificate and also renewing would be easier.
The text was updated successfully, but these errors were encountered: