未验证SSL证书Android kitkat版本上的错误 [英] SSL certificate not verified Error on Android kitkat version

查看:108
本文介绍了未验证SSL证书Android kitkat版本上的错误的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

我有SSL验证的网站,该网站已由第三方供应商成功验证. 在其他操作系统(例如Windows,Chrome浏览器)中,它运行正常,没有任何警告/错误

I have SSL verified website, which is successfully verified by third party vendor. And it working fine without any warning/errors in other OS like windows, chrome browser

当我尝试从带有KitKat版本的手机打开它时,它显示在下面的错误代码

When I am trying to open it from mobile with KitKat version It show below error code

Error Code : NET:: ERR_CERT_AUTHORITY_INVALID

推荐答案

我遇到了相同的错误:请求https的应用在除旧android 4.4之外的所有平台和版本上均能正常工作-问题是IIS服务器计算机上的Comodo根证书冲突.

I had same error: app requesting https working fine on all platforms and versions except old android 4.4 - problem was conflicting Comodo root certificates on IIS server machine.

主要问题是我在远程有两个证书链:

The main issue is that i had two certificates chains on remote:

  • a. Comodo-> Comodo->您的站点证书
  • b. AddTrust-> Comodo-> 您的站点证书
  • a. Comodo -> Comodo -> your site certificate
  • b. AddTrust -> Comodo -> your site certificate

这对每个人来说都不是问题,但旧的Android(现在只是有些幽默)认为这是冲突并且是恶魔的迹象,因此您的网站不受信任. 我遵循了 https://stackoverflow.com/a/46135138/7149454 的路径,我的感谢和感谢,所以最后:

That is not a problem for everyone but the old Android who (now just a bit of humor) thinks its a conflict and a sign of something evil so your site is not trusted. I followed the path from https://stackoverflow.com/a/46135138/7149454, my thanks and credits, so finally:

  1. 在远程窗口上打开MMC:搜索证书",打开管理计算机证书.

打开受信任的根证书颁发机构,完全删除comodo唯一证书,因此此部分完全没有comodo.我们不需要它,因为您的Comodo中间证书需要由AddTrust而不是这个来验证.

open Trusted Root Certification Authorities delete completely comodo unique certificate so there's no comodo at all in this section. We dont need it as your Comodo intermediate certificate need to be verified by AddTrust and not this one.

打开中间证书颁发机构,删除颁发给Comodo RSA证书颁发机构的2个comodo证书中的1个,仅保留AddTrust颁发的1个,删除Comodo本身颁发的1个.

open Intermediate Certification Authorities delete 1 of 2 comodo certificate issued to Comodo RSA Certification Authority, leave only one issued by AddTrust, delete one issued by Comodo itself.

重新启动,现在您有了AddTrust-> Comodo->的逻辑链 您的站点证书.

REBOOT Now you have the logic chain from AddTrust -> Comodo -> your site certificate.

这篇关于未验证SSL证书Android kitkat版本上的错误的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!

查看全文
登录 关闭
扫码关注1秒登录
发送“验证码”获取 | 15天全站免登陆