Pomoc pśepytaś

Glědajśo se wobšudy pomocy. Njenapominajomy was nigda, telefonowy numer zawołaś, SMS pósłaś abo wósobinske informacije pśeraźiś. Pšosym dajśo suspektnu aktiwitu z pomocu nastajenja „Znjewužywanje k wěsći daś“ k wěsći.

Dalšne informacije

Using mTLS with Firefox on Android

more options

Hello,

The default browser in our company is Firefox. We have some internal websites now available from outside with mTLS.

This is working fine with Firefox on laptop (fedora), but I cannot make it work with Firefox on Android (which is crucial as the aim of this project is to have those apps securely available to all or employees from outside).

I installed the user certificate in the Android "User credentials" trust store, but Firefox (version 128.0.1) is not offering to use that certificate for mTLS, and just show a "Secure Connection Failed" error message.

How can we have Firefox on Android using the user CA to access those applications?

Thank you in advance for your feedback.

Best regards,

B.

Hello, The default browser in our company is Firefox. We have some internal websites now available from outside with mTLS. This is working fine with Firefox on laptop (fedora), but I cannot make it work with Firefox on Android (which is crucial as the aim of this project is to have those apps securely available to all or employees from outside). I installed the user certificate in the Android "User credentials" trust store, but Firefox (version 128.0.1) is not offering to use that certificate for mTLS, and just show a "Secure Connection Failed" error message. How can we have Firefox on Android using the user CA to access those applications? Thank you in advance for your feedback. Best regards, B.

Wšykne wótegrona (2)

more options

Did you enable Use third party CA certificates?

Wužytny?

more options

This option is enabled, yes. And the Company's CA is added as well in the trust store. The trust of the website's certificate seems OK as we don't have a "Insecure Website" error, but the mTLS handshake is not going through and firefox is not asking if it can send the user Certificate, as it does on Fedora

Wužytny?

Stajśo pšašanje

Musyśo se pla swójogo konta pśizjawiś, aby na pśinoski wótegronił. Pšosym stajśo pšašanje, jolic hyšći njamaśo wužywaŕske konto.