Important Notice: We're experiencing email notification issues. If you've posted a question in the community forums recently, please check your profile manually for responses while we're working to fix this.

Avatar for Username

Sykje yn Support

Mij stipescams. Wy sille jo nea freegje in telefoannûmer te beljen, der in sms nei ta te stjoeren of persoanlike gegevens te dielen. Meld fertochte aktiviteit mei de opsje ‘Misbrûk melde’.

Mear ynfo

Dizze konversaasje is argivearre. Stel in nije fraach as jo help nedich hawwe.

Using mTLS with Firefox on Android

barthelemy.desauvage
barthelemy.desauvage
more options

Hello,

The default browser in our company is Firefox. We have some internal websites now available from outside with mTLS.

This is working fine with Firefox on laptop (fedora), but I cannot make it work with Firefox on Android (which is crucial as the aim of this project is to have those apps securely available to all or employees from outside).

I installed the user certificate in the Android "User credentials" trust store, but Firefox (version 128.0.1) is not offering to use that certificate for mTLS, and just show a "Secure Connection Failed" error message.

How can we have Firefox on Android using the user CA to access those applications?

Thank you in advance for your feedback.

Best regards,

B.

Hello, The default browser in our company is Firefox. We have some internal websites now available from outside with mTLS. This is working fine with Firefox on laptop (fedora), but I cannot make it work with Firefox on Android (which is crucial as the aim of this project is to have those apps securely available to all or employees from outside). I installed the user certificate in the Android "User credentials" trust store, but Firefox (version 128.0.1) is not offering to use that certificate for mTLS, and just show a "Secure Connection Failed" error message. How can we have Firefox on Android using the user CA to access those applications? Thank you in advance for your feedback. Best regards, B.

Alle antwurden (2)

TyDraniu
TyDraniu
  • Top 25 Contributor
more options

Did you enable Use third party CA certificates?

barthelemy.desauvage
barthelemy.desauvage Fraacheigener
more options

This option is enabled, yes. And the Company's CA is added as well in the trust store. The trust of the website's certificate seems OK as we don't have a "Insecure Website" error, but the mTLS handshake is not going through and firefox is not asking if it can send the user Certificate, as it does on Fedora