I am having trouble importing a self signed server certificate to my Sony Ericsson Xperia Arc S running CyanogenMod 9.1. I have tried everything that came to mind.
First, the usual method:
- downloaded certificate in PEM format as
cert.crtusing FireFox on the SD card root
- opening Settings on the phone, then Security, install from SD card.
- phone asks for name, I give it and then the phone shows message that the certificate was successfully installed
- if I go to Trusted Credentials -> User, certificate is not there and the site I downloaded it for still shows as untrusted
- I also tried importing by uploading the certificate on the site and downloading it in the Android browser - same result - success message and now certificate imported.
Second, I tried to get it into the system certificates
first, the conversion with these commands (first command shows the hash used in the other two):
openssl x509 -inform PEM -subject_hash_old -in root.crt | head -1 cat root.crt > 5ed36f99.0 openssl x509 -inform PEM -text -in root.crt -out /dev/null >> 5ed36f99.0
then I moved certificates on the phone, remounted
/systemwith write permissions, moved certificate to
/system/etc/security/cacerts/and changed its permissions to
After reboot, certificate shows itself correctly in trusted credentials system tab, but the website still appears untrusted.
The question is, is there another option to install the certificate, or to disable certificate check for site system-wide (I need an application to access this site also). Or does someone have a similar problem?
I should add that I also own an Xperia Arc (without S) running CyanogenMod 9.0, where the certificates are actually working via the first two methods.View original question