1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Dismiss Notice

Welcome To SNBForums

SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.

If you'd like to post a question, simply register and have at it!

While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!

pixelserv https certificate issue on iOS

Discussion in 'Asuswrt-Merlin' started by akb, Oct 21, 2019.

  1. akb

    akb Regular Contributor

    Joined:
    Sep 25, 2016
    Messages:
    134
    Hi all, i made a pixelserv https certificate because it looks like letsencypt is borked. I am able to get the https working my laptop outside the network, but when i try to use my phone, i get the unsecure https prompt. I have the pixelserv certificate in my profile already.

    Any ideas?
     
  2. Mutzli

    Mutzli Senior Member

    Joined:
    Dec 22, 2014
    Messages:
    315
    This was discussed in the pixelserv -tls thread a month ago. An updated version is available that creates a new certificate to meet the latest iOS requirements.
    start reading this section: https://www.snbforums.com/threads/pixelserv-a-better-one-pixel-webserver-for-adblock.26114/page-157
     
    martinr, Clark Griswald and dave14305 like this.
  3. akb

    akb Regular Contributor

    Joined:
    Sep 25, 2016
    Messages:
    134
  4. akb

    akb Regular Contributor

    Joined:
    Sep 25, 2016
    Messages:
    134
    Actually this looks like the https for pixelserv blocking. I was refering to the pixelserv self signed cert for ddns. iOS is not working for that, i already have iOS workin great with pixelserv add blocking.
     
  5. akb

    akb Regular Contributor

    Joined:
    Sep 25, 2016
    Messages:
    134
    Ok, so i actually see that even though i installed the pixelserv self signed cert for my DDNS, it shows as Not Verified. hmmm what am i missing?
     
  6. Mutzli

    Mutzli Senior Member

    Joined:
    Dec 22, 2014
    Messages:
    315
    It works for me with the latest pixelserv version 2.3.0 and a self signed certificate. I had to manually remove the old certificates from the iDevice and install the new one I created with 2.3.0. And of course do the same on the router web UI, renew the certificate for DDNS.
     
  7. mrchow

    mrchow Occasional Visitor

    Joined:
    Jan 5, 2017
    Messages:
    24
    The generated certificate is not iOS 13 compliant. A new and compliant certificate has to be created by pixelserv. Thus you have to upgrade to the most recent version. Afterwards existing certs have to be purged.
     
  8. akb

    akb Regular Contributor

    Joined:
    Sep 25, 2016
    Messages:
    134
    This was the issue, i was using the latest default version of pixelserv, not the 2.3.0 version. Duh! I upgraded and all is well thanks everyone!!
     
  9. akb

    akb Regular Contributor

    Joined:
    Sep 25, 2016
    Messages:
    134
    Wait god damnit, i thought it was working because my DDNS cert shows as verified in the profile page of iOS, but when i visit the domain it shows unsecure again ARG. I know atleast moving to 2.3.0 got the cert from unverified to verified when its installed, but again iOS will not secure the domain, but other devices like laptop / desktops show it as secure.


    EDIT: I am an idiot, apprently i need to toggle some trust setting in ios 13.0 + in addition to getting the cert verified. What a PITA. THANKS ALL
     
    dave14305 likes this.