list certificate stored in user credentials
In Android 7 Nougat, user installed certificate goes to \"User credentials\" instead of \"Trusted credentials\"(which consists of system credential & user credential).
-
To provide a more consistent and more secure experience across the Android ecosystem, beginning with Android Nougat, compatible devices trust only the standardized system
CAsmaintained in AOSP.Previously, the set of
pre-installed CAsbundled with the system could vary from device to device. This could lead to compatibility issues when some devices did not include CAs that apps needed for connections as well as potential security issues if CAs that did not meet our security requirements were included on some devices.First, be sure that your CA needs to be included in the system. The preinstalled CAs are only for CAs that meet our security requirements because they affect the secure connections of most apps on the device. If you need to add a CA for connecting to hosts that use that CA, you should instead customize your apps and services that connect to those hosts. For more information on Customizing trusted CAs.
In above link you can find all the necessary information for trusting custom CAs with different needs like
- Trusting custom CAs for debugging
- Trusting custom CAs for a domain
- Trusting user-added CAs for some domains
- Trusting user-added CAs for all domains except some
- Trusting user-added CAs for all secure connections
So, Basically you need to add a Security Configuration File and Configure a custom CA(For Android 7.0 (API level 24) and higher).
In Your manifest.xml
... In res/xml/network_security_config.xml:
example.com Just for Information :- If you operate a CA that you believe should be included in Android, first complete the Mozilla CA Inclusion Process and then file a feature request against Android to have the CA added to the standardized set of system CAs.
Let me know for any further help.
Hope this will help you. Keep Coding!!!
加载中...
- 热议问题