1. You want that $100.00 in your pocket or an Amazon Fire TV don't you? Well here's the deal. With our new updated look we are in desperate need of an updated logo. The 'old' one has certainly served us well, but it's time. Find all the details here: bit.ly/1q0k6Wa
  2. DroidForums.net is currently undergoing a major software upgrade. If you are experiencing any problems logging in please: Contact Us

Certificate Issues

Discussion in 'Droid Incredible Tech Support' started by Weygand, May 11, 2010.

  1. Weygand
    Offline

    Weygand New Member

    Joined:
    May 5, 2010
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    0
    Hello Everyone,

    I'm having a bit of an issue with my Incredible. It works fine for about 8 hours then I begin to get certificate errors in the notification bar. It gives me untrusted certificate warnings (these are legitimate certificates from a legitimate company); I can still get it to sync when I tell it to continue, but I would like to know what is causing this error when I haven't seen it on my other Android devices.

    Any other Exchange users experiencing this?

    Regards,
  2. R1Lover
    Offline

    R1Lover New Member

    Joined:
    Nov 6, 2009
    Messages:
    1,702
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Northern Ca
    I haven't had an issue.... have you tried different config settings?
  3. Weygand
    Offline

    Weygand New Member

    Joined:
    May 5, 2010
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    0
    Thanks for the reply. Yes, I have. I also have had myself put into a test group on one our development exchange groups with relaxed standards which has definitely translated over because I'm not forced to adhere to certain policies our user base would have to observe. I've also enabled the use of trusted certificates in Settings/Security.

    I have tried the Android Certificate Installer/ but had no luck.:greendroid::greendroid::icon_eek:

    It must be something I am messing up because more people would be posting about it.
  4. R1Lover
    Offline

    R1Lover New Member

    Joined:
    Nov 6, 2009
    Messages:
    1,702
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Northern Ca
    what version of exchange are you running? are there any other android phones connecting without issues?
  5. Weygand
    Offline

    Weygand New Member

    Joined:
    May 5, 2010
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    0
    Problem limited to Native Exchange Support

    We're running Exchange 2003 and I have connected my Droid native client and TD. I don't see the issue on my Droid or any other Android devices, but the Droid is the only other one I can get the native client to sync with Exchange. My Devour and Backflip use the Moto Blur overlay which handles the security requirement without issue and obviously Touchdown doesn't have these issues
  6. nightstalker6118
    Offline

    nightstalker6118 New Member

    Joined:
    May 27, 2010
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    0
    It's not just you. My company identified this same problem in early testing of the Incredible. I think it is an HTC issue because our IT department keeps telling us that Verizon is working with HTC to fix the issue. We're also on 2003. They won't allow the phone on our corporate plan until this gets fixed. :(
  7. DoctorDeDroid
    Offline

    DoctorDeDroid New Member

    Joined:
    Aug 4, 2010
    Messages:
    208
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Boston Area
    I don't know what's going on here but I started getting warnings about untrusted certificates (on my D1) a few days ago... and these are on sites which I repeatedly visited over the last several months. Sites like slashdot.org (which complains a certificate issued to Google, by Thawte SGC CA is not trusted) or verizon which complains that a different cert (espanol.verizon.com issued by Cybertrust Public SureServer SV CA) isn't trusted (this one was issued on December 13, 2011 and I KNOW I visited the site a few weeks ago and, sure as s**t did not get this warning!) It's like something smoked my browser's trust store.... I can't find where this damn phone manages trusted certs in the first place so I'm a bit perplexed. Does anybody know what's going on here?
  8. mamawm
    Offline

    mamawm New Member

    Joined:
    Jul 30, 2010
    Messages:
    509
    Likes Received:
    3
    Trophy Points:
    0
    Location:
    mississippi
    I started getting that message on my bionic yesterday but only on THIS site, and I feel pretty sure droidforums.net can be trusted.

    Sent from my A100 using DroidForums
  9. DoctorDeDroid
    Offline

    DoctorDeDroid New Member

    Joined:
    Aug 4, 2010
    Messages:
    208
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Boston Area
    As if things couldn't get more bizzare....

    As a rooted D1 user, and seeing as how I have a basic idea on how Certifying Authorities and trust stores work (I've been successful at my company in implementing SSL, setting up an in house CA to sign our server certs, chains, and other such nonsense) I took it upon myself to update /etc/security/cacerts.bak myself. I found that I needed the bouncycastle (I kid you not) crypto provider to read and/or change the keystore (thanks so much for not using std. jks). I then found the offending (or rather *missing*) CA Certs, starting with the one from Thawte (now Verisign). I went straight to the Verisign website as I sure as hell wasn't going to trust some odd download. I unpacked the zipped up FULL CA list and stuffed the appropriate item into the CA store. Swapped out the store (after copy and backup of the original), rebooted the phone just for the halibut, and pointed my browser back to slashdot.org and voila, NO warning. Gives one a bit of confidence doesn't it? So I repeated the process for the stupid one VZW's website was hollerin' about. This was a touch more complex because the signing cert was part of a chain so I needed BOTH items in the store. Added them, and again success! THEN I discovered that my VZW DVR manager now REFUSED TO CONNECT. After a temporary red herring (I added a network printer to my network and needed to kick over the wireless router, and also found that for a short time I could not use VZW website to manage my dvr) everything seemed to be back to normal EXCEPT my droid's DVR manager app. So on a lark, I switched the bks files back to the original that was on my droid. The result was:

    1) my dvr manager app could now connect and all was well...
    2) the warnings I WAS getting in my browser DISAPPEARED completely.

    WTF is going on here??? This is patently stupid. I not so crazy to think I could not have done something wrong... but all I did was ADD a couple of CA certs to the keystore... how on earth could this have broken DVR manager's connectivity since whatever certs it needed are STILL in the store? I sure as heck didn't take one out! And since I WAS getting these messages on the *original* keystore, *why did the warnings go away when I put the original back*? (unless by some miracle slashdot/google/vzw changed things back on their servers!)
Search tags for this page
cybertrust public sureserver
,

cybertrust public sureserver sv ca

,
droid certificate error
,
droid untrusted certificates
,
how to fix a certificate error on android phone
,
how to fix certificate error for samsung galaxy s4
,
how to fix defective eris droid with certification error
,
how to fix security certificate error android
,
how to fix security certificate error on android
,
how to fix security certificate errors in android
,
how to fix security certificate errors on android
,
problem certificate browser motorola milestone
,
what is cybertrust public sureserver sv ca
,
what is ssl on htc razor phone
,
why is my motorola razr m asking for client certificate