Importing an existing self- signed trusted root certificate no longer triggers option to trust cert in Settings / About / Certificate Trust Settings In iOS 18.
Cert installed manually from internal website, as email attachment, and using profile in Configurator all produce same result.
Same cert and processes work on iOS 16.7.10, iOS 17.6.1 and iPadOS 18.0
But not on iOS 18.0 nor beta iOS 18.1 beta5 on iPhone 16
Also tried regening a new test root on macOS Sonoma and installing using Configurator. No difference.
It’s broken - I’ve reported it by Feedback - it’s a vital security flaw.
Anyone else see this or have a workaround?
I can’t explain the behaviour you’re seeing, but this continues to work for me. I have a personal CA that I use to issue certificates. I run this CA using Keychain Access > Certificate Assistant, using roughly the process described in Technote 2326 Creating Certificates for TLS Testing.
I just installed this CA’s root certificate on an iOS 18 device by:
-
Downloading the
.cer
file in Safari. -
Importing the profile in Settings.
-
Enabling the CA in Settings > About > Certificate Trust Settings.
That is, roughly the process described in QA1948 HTTPS and Test Servers.
I was then able to use Safari to access an HTTPS server whose certificate was issued by that CA.
I’ve seen problems like this in the past and they usually involve one of two things:
-
Folks trying to use a self-signed server certificate. Things go more smoothly if you create a CA, have it issue the server certificate, and then trust the CA’s root certificate.
-
The CA root certificate being weirdly formed, for example, the issue described here.
I’ve reported it by Feedback
What was your bug number?
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"