https://community.cisco.com/t5/endpoint-security/ios-server-certificate-quot-not-trusted-quot-despite-root-cert/m-p/5417527#M10184 <P>Is your Root CA validity longer than 398 days?</P><P><A href="https://discussions.apple.com/thread/252689988?sortBy=rank" target="_blank" rel="nofollow noopener noreferrer">https://discussions.apple.com/thread/252689988?sortBy=rank</A></P><P>and</P><P><A href="https://support.apple.com/en-us/102028" target="_blank" rel="nofollow noopener noreferrer">https://support.apple.com/en-us/102028</A></P> Mon, 18 Nov 2024 08:54:19 GMT Arthur Dent 2024-11-18T08:54:19Z https://community.cisco.com/t5/endpoint-security/ios-server-certificate-quot-not-trusted-quot-despite-root-cert/m-p/5417525#M10182 <P>We have an internal site accessed over HTTPS. The certificate chain is: RootCert -&gt; ServerCert. We pushed the RootCert to an iPad using a Meraki profile. The certificate shows as being trusted on the iPad under <SPAN>General -&gt; About -&gt; Certificate Trust Settings but the site is still warning about unsecured, untrusted cert. So I push the server certificate (signed by the root ca that's already trusted). It shows under General -&gt; VPN and Device Management -&gt; MDM -&gt; Meraki... but <EM>does not</EM> show in the Certificate Trust Settings page...so I'm guessing only root certs are added to this page? At any rate, the browser is still complaining that the cert is untrusted. Everything works fine on desktops (Windows/MacOS/Linux) with <EM>only</EM> the Root Cert trusted, as expected.</SPAN></P><P><SPAN>Has anyone run into this before? Is it a limitation of iOS or Meraki or something else?</SPAN></P> Fri, 28 Oct 2022 15:29:07 GMT https://community.cisco.com/t5/endpoint-security/ios-server-certificate-quot-not-trusted-quot-despite-root-cert/m-p/5417525#M10182 jtillman11 2022-10-28T15:29:07Z https://community.cisco.com/t5/endpoint-security/ios-server-certificate-quot-not-trusted-quot-despite-root-cert/m-p/5417526#M10183 <P>Did you ever find a solution to this issue? We are facing the same issue.</P> Wed, 13 Nov 2024 14:12:38 GMT https://community.cisco.com/t5/endpoint-security/ios-server-certificate-quot-not-trusted-quot-despite-root-cert/m-p/5417526#M10183 ShawnWillard 2024-11-13T14:12:38Z https://community.cisco.com/t5/endpoint-security/ios-server-certificate-quot-not-trusted-quot-despite-root-cert/m-p/5417527#M10184 <P>Is your Root CA validity longer than 398 days?</P><P><A href="https://discussions.apple.com/thread/252689988?sortBy=rank" target="_blank" rel="nofollow noopener noreferrer">https://discussions.apple.com/thread/252689988?sortBy=rank</A></P><P>and</P><P><A href="https://support.apple.com/en-us/102028" target="_blank" rel="nofollow noopener noreferrer">https://support.apple.com/en-us/102028</A></P> Mon, 18 Nov 2024 08:54:19 GMT https://community.cisco.com/t5/endpoint-security/ios-server-certificate-quot-not-trusted-quot-despite-root-cert/m-p/5417527#M10184 Arthur Dent 2024-11-18T08:54:19Z https://community.cisco.com/t5/endpoint-security/ios-server-certificate-quot-not-trusted-quot-despite-root-cert/m-p/5417528#M10185 <P>Paul that was exactly the issue. Thanks.</P> Mon, 18 Nov 2024 13:28:35 GMT https://community.cisco.com/t5/endpoint-security/ios-server-certificate-quot-not-trusted-quot-despite-root-cert/m-p/5417528#M10185 ShawnWillard 2024-11-18T13:28:35Z