Avatar for Username

Hilfe durchsuchen

Vorsicht vor Support-Betrug: Wir fordern Sie niemals auf, eine Telefonnummer anzurufen, eine SMS an eine Telefonnummer zu senden oder persönliche Daten preiszugeben. Bitte melden Sie verdächtige Aktivitäten über die Funktion „Missbrauch melden“.

Weitere Informationen

Using mTLS with Firefox on Android

barthelemy.desauvage
barthelemy.desauvage
more options

Hello,

The default browser in our company is Firefox. We have some internal websites now available from outside with mTLS.

This is working fine with Firefox on laptop (fedora), but I cannot make it work with Firefox on Android (which is crucial as the aim of this project is to have those apps securely available to all or employees from outside).

I installed the user certificate in the Android "User credentials" trust store, but Firefox (version 128.0.1) is not offering to use that certificate for mTLS, and just show a "Secure Connection Failed" error message.

How can we have Firefox on Android using the user CA to access those applications?

Thank you in advance for your feedback.

Best regards,

B.

Hello, The default browser in our company is Firefox. We have some internal websites now available from outside with mTLS. This is working fine with Firefox on laptop (fedora), but I cannot make it work with Firefox on Android (which is crucial as the aim of this project is to have those apps securely available to all or employees from outside). I installed the user certificate in the Android "User credentials" trust store, but Firefox (version 128.0.1) is not offering to use that certificate for mTLS, and just show a "Secure Connection Failed" error message. How can we have Firefox on Android using the user CA to access those applications? Thank you in advance for your feedback. Best regards, B.

Alle Antworten (2)

TyDraniu
TyDraniu
  • Top 25 Contributor
more options

Did you enable Use third party CA certificates?

Hilfreich?

barthelemy.desauvage
barthelemy.desauvage Fragesteller
more options

This option is enabled, yes. And the Company's CA is added as well in the trust store. The trust of the website's certificate seems OK as we don't have a "Insecure Website" error, but the mTLS handshake is not going through and firefox is not asking if it can send the user Certificate, as it does on Fedora

Hilfreich?

Stellen Sie eine Frage

Sie müssen sich mit Ihrem Benutzerkonto anmelden, um auf Beiträge zu antworten. Bitte stellen Sie eine neue Frage, wenn Sie noch kein Benutzerkonto haben.