问题
I have created a CA, server and client certificates with OpenSSL for my application. When I look under profiles, the root CA shows up as "Trusted", but my server and client certificates (which are signed by my CA) show up as "Not Trusted".
These certificates show up as being signed by the root CA, and work correctly under IE or Chrome.
- Why don't these work?
- Any way to debug why they show up as "not trusted"?
回答1:
I am speculating that it occurred because I was only using a small (512 or 1024) byte certificate. When I used a newer version of OpenSSL to create a 2048-byte certificate, it started working.
I still have to verify if there is indeed a minimum-acceptable key length in iOS.
回答2:
The iPhone Configuration Utility allows you to install and manage all kinds of configuration settings, including root certificate authorities.
It should give you the ability to see what CAs you have on your device, add new ones, and remove any that are causing your problems.
来源:https://stackoverflow.com/questions/12335078/why-is-my-ios-profile-not-trusted