Solved

How do I add the self-signed sbs 2011 certificate to an android phone?

Posted on 2014-07-22
8
66 Views
Last Modified: 2016-07-19
How do I add the self-signed sbs 2011 certificate to an android phone?
0
Comment
Question by:Ken Macleish
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
8 Comments
 
LVL 11

Accepted Solution

by:
DIPRAJ earned 100 total points
ID: 40213450
place the certificate in your SD card.
go to your phone security settings and install the certificate.
0
 
LVL 63

Assisted Solution

by:btan
btan earned 300 total points
ID: 40213516
pls see this if helps
https://coderwall.com/p/wv6fpq

Copy the .crt file to the root of the /sdcard folder inside your Android device
Inside your Android device, Settings > Security > Install from storage. It should detect the certificate and let you add it to the device

Browse to your development site. The first time it should ask you to confirm the security exception. That's all. The certificate should work with any browser installed on your Android (Browser, Chrome, Opera, Dolphin...)

Remember that if you're serving your static files from a different domain... you also need to add the certificate for that domain.

However, you should be careful to make sure your self-signed certificate has a reasonably strong key. As of 2012, a 2048-bit RSA signature with an exponent of 65537 expiring yearly is acceptable. When rotating keys, you should check for recommendations from an authority (such as NIST) about what is acceptable.

https://developer.android.com/training/articles/security-ssl.html#SelfSigned
0
 
LVL 16

Assisted Solution

by:Dirk Mare
Dirk Mare earned 100 total points
ID: 40214110
If its the same key your OWA is using you can connect the phone to Wifi and browse to your OWA page and you should be able to install the certificate via your browser..

DirkMare
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 63

Assisted Solution

by:btan
btan earned 300 total points
ID: 40214238
I was reviewing some public info and there is case where Android accept BKS certificates whereas most of the time a CER certificate with keytool is created instead. The suggested step to produce the BKS and import is as follows.

Download portecle (http://portecle.sourceforge.net/)
Run the program
File > New KeyStore > BKS
Tools > Import Trusted Certificate > alias = server
Save Keystore (pass = keypass) as C:\temp\server.bks
Copy the file to the Android project in res/raw/server.bks

http://transoceanic.blogspot.sg/2011/11/android-import-ssl-certificate-and-use.html
0
 
LVL 63

Assisted Solution

by:btan
btan earned 300 total points
ID: 41711585
The approach for installing for android is shared,  the process is to change pem to CRT first

As is in Google’s documentation, you can add your own certificates to the phone, but it has to be in the DER or PKCS#12 format. This is different from the usual PEM format which you would set up for your website, but thankfully a few lines of a shell script and the OpenSSL toolkit will get you on your way:

echo | \
  openssl s_client -connect ${SERVER}:${PORT} 2>&1 | \
  sed -n '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' | \
  openssl x509 -outform DER -out ${SERVER}.crt
and thereafter

Pop that resulting .crt file into the root directory of your phone, then go to the Settings -> Personal -> Security -> Credential Storage -> Install from storage. It’ll find your self-signed cert, at which point you can use it without the error messages in any of your applications.

You can then remove any of these certificates via “Trusted credentials” under the similar “Credential Storage” area, and clicking on the “User” tab. Click on the certificate, and scroll the detail view to the bottom to reveal the (otherwise hidden) “Remove” button.
https://coderwall.com/p/wv6fpq/add-self-signed-ssl-certificate-to-android-for-browsing
http://rlaskey.org/words/2093/android-adding-your-self-signed-certs/
0
 
LVL 63

Expert Comment

by:btan
ID: 41711586
For consideration of ID: 41711585 and ID: 40213516 as solution.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to unlock files from encrypted Malware 12 90
High Availability of SQL 2012 R2 3 70
Windows - create strong certificates 5 81
virus encrypted files with OSIRIS extension 12 71
Cybersecurity has become the buzzword of recent years and years to come. The inventions of cloud infrastructure and the Internet of Things has made us question our online safety. Let us explore how cloud- enabled cybersecurity can help us with our b…
In 2017, ransomware will become so virulent and widespread that if you aren’t a victim yourself, you will know someone who is.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question