Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Ashot Aslanyan2016-11-22 18:09:35
Apache HTTP Server
Ashot Aslanyan, 2016-11-22 18:09:35

Why does the Comodo Essential SSL Certificate for a website not work on mobile devices, namely Android?

Hello! Please help if you know. The situation is this.
I have Windows Server 2008 with Xampp apache server installed.
Site is working fine, installed Comodo Essential SSL Certificate today.
after the settings in httpd-ssl.conf The certificate worked,
the problem is that if you access the site from mobile devices with an android chrome browser, the certificate is red
and NET::ERR_CERT_AUTHORITY_INVALID is written.
and if you go with an IPHONE, then everything is in order. and even if you go with android but with the firefox browser, everything is fine too.
what is the reason that such a problem occurs on mobile devices with the chrome browser? how to solve it?
by the way, there are 4 .crt files in the .zip file of kamodo certificates
AddTrustExternalCARoot.crt
COMODORSAAddTrustCA.crt
COMODORSADomainValidationSecureServerCA.crt
www_domain.crt
I used only the latest www_domain.crt certificate in apache. the rest I do not know how to configure.
and I think those 3 files that I did not use, this is the problem.
please help with an example.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
C
CityCat4, 2016-11-22
@fellliche

ERR_CERT_AUTHORITY_INVALID means that the CA that issued the certificate is not in the list of root CAs. What kind of android is so strange that he does not know komodo?
4 files sent to you contain your certificate and all Komodo certificates - root and all intermediate ones.
Is there any tricky redirector there?
Because (I just type yerevanyan.am in the address bar, without https, without anything):
- when entering from Firefox (Linux, Firefox 50) - blinks a couple of times, the line changes to https://www.yerevanyan.am - and a certificate from komodo
- when entering from Konqueror (this is such a dumb browser in KDE) - it does not automatically switch to https. If you manually add https, then it says a certificate error and a certificate from WoSign
- when testing the connection via

# openssl s_client -connect yerevanyan.am:443
CONNECTED(00000003)
depth=0 CN = galaxy-internet.ru
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = galaxy-internet.ru
verify error:num=27:certificate not trusted
verify return:1
depth=0 CN = galaxy-internet.ru
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
 0 s:/CN=galaxy-internet.ru
   i:/C=CN/O=WoSign CA Limited/CN=WoSign CA Free SSL Certificate G2

Similar questions
A
alehandroWEB2018-05-10 14:07:07
How to redirect all pages except one to https? 0Reply
L
lexstile2018-05-10 22:16:21
Server response time 3 seconds? 1Reply
S
Slash2018-05-12 15:05:27
phpMyAdmin Panel: Security Threat (https). How to fix? 2Reply
O
Outsider V.2016-01-05 13:48:13
Why is there a redirect to an address with a slash? 2Reply
R
rgz2018-05-14 13:52:59
What modules to use for Apache 2.4 to improve performance? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question