Certificate Trust Settings - IOS requirements on CA-certificates?

Dear Users,

I'm unable to mark an imported internal CA-certificate as trusted in latest IOS. The certificate does not show up in Certificate Trust Settings, however i was generally able to import and enable it.

Where can i find technical specifications on what IOS requires?

All i found was this article for IOS 13[1] however my root-certificate fulfills all requirements.

I attach[2] the root-certificate for testing purpose to this post, so it can be tested & analyzed.

Thank you.

[1] https://support.apple.com/en-in/103769

[2] http://plzk.de/ROOT_CA.crt

Answered by ForumsContributor in
Accepted Answer

Your root certificate has no Key Usage extension (OID 2.5.29.15), which is pretty critical for a CA cert because you need to be able to list Key Cert Sign as a valid option.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

Thank you Eskimo! :)

Certificate Trust Settings - IOS requirements on CA-certificates?
 
 
Q