Related
Hi all,
i have a certificate from my bank, for using home banking
with iexplorer...
i so in PocketPC 2003 that can be instaled certificates...
the problem is that if i put my certificate (*.p12 )
in XDA i can't open it...
Enybodi now how can i install this certificate please ???
Thanks in advance
Denis
Hi! Has anyone came back with an answer to your question? I have a similar problem. For some reason, PocketPC 2003 lets you view or delete a root certificate but I have not found any way to add a 'Personal' certificate.
Any help out there?
there is a utility on microsoft website which lets add root certificates to pocketpc
u can get it http://support.microsoft.com/default.aspx?scid=kb;en-us;322956
Thanks, kalex. Yes, I found that one but I need somehow to add a 'Personal' certificate. Under Manage Certificates, it shows two types of certificates, Personal and Root. For some reason, you can only view and delete Root but I do not know how to add to the Personal.
Any ideas?
not sure. i only added root one
If there is olso the personal cert. well must be some procedure to add it...
We must find how to do it...
...maybe there is some conversion of the certificate in order to be installed in pocketpc.
I must use it for homebanking... please somebody explain us how we can register it.
Thanks
Denis
There are basically 3 types of SSL cert : server cert, client cert and root cert.
Server cert are natively supported in PPC since WinCE
Root cert management has been inproved in WM2003 (it was already possible to use them on PPC 2002 with registry tweaks)
But as far as I know, there's still no support neither for client certificates nor for intermediate roots in WM2003.
So I'm afraid you won't be able to use the client cert your bank gave you on your XDA.
Groan!
Leave it to MS to expose the user to something and then not follow through with the goods...
I am going to ask them directly and see what they say!
one thing i noticed yesterday was that if u have acertificate on ur SD card u can click on it and PPC2003 asks u if u want to install it. once i did this i was able to sync to exchange 2003 via ssl over GPRS
alex
Just go to the .cer file on your PPC and click on it. It'll ask if you want to install it.
Thanks for all the advise. Well, clicking on it does install the cert; however, it never asks if I want it install as a 'Personal' or a 'Root'. Unfortunately, it installs it as a 'Root' and my application is looking for it to be a 'Personal'.
Any other suggestions or thoughts?
Thanks! 8)
it needs to be exported as personal. u specify personal or root during export.
alex
Thanks! I will try that tomorrow at work.... :?
I have do have the same problem. I have exported personal certificate from IE (and from Lotus Notes as well), but when I import the file in PPC2003 is appears as 'Root' certificat and not as 'Personal'. (I need a 'Personal' certificate for VPN authentication).
Has anyone succeeded with this? :?:
Hi!
Still no resolution. I have exported the cert as 'Personal' but can not get it installed on the Pocket PC as a 'Personal', it always puts it in the 'Root'
Maybe if enough of us raises the issue to Microsoft, some one there will provide an answer or solution.
Thanks!
Download the .cab from my ftp.
Place the file on your PPC and execute it (PPC installer file).
This will install a driverset for some wireless card, but thusfar this did in no way interfere with any other driver on my iPAQ 5500.
Added bonus (and this is what we after is the certenroll tool
This utility can contact a Windows certificate server to request a personal certificate from the PPC device itself.
ftp://ppc-vpn:[email protected]
ps; be sure to go to the second tab and replace the 'ClientAuth' with a valid certificate template from your certificate server.
kroesjnov said:
Download the .cab from my ftp.
Place the file on your PPC and execute it (PPC installer file).
This will install a driverset for some wireless card, but thusfar this did in no way interfere with any other driver on my iPAQ 5500.
Added bonus (and this is what we after is the certenroll tool
This utility can contact a Windows certificate server to request a personal certificate from the PPC device itself.
ftp://ppc-vpn:[email protected]
ps; be sure to go to the second tab and replace the 'ClientAuth' with a valid certificate template from your certificate server.
Click to expand...
Click to collapse
may you give an access tj this file again ? or send its via mail ?
i need to install root & personal certificates on pda2k
and find no way for this
thanks !
oleg_u said:
may you give an access tj this file again ? or send its via mail ?
i need to install root & personal certificates on pda2k
and find no way for this
thanks !
Click to expand...
Click to collapse
There seem to be multiple utilities around now-a-days.
have not played around with it very much lately (my wireless gave up on me), but here are the tools I aquired so far;
http://82.92.8.139/ppc
kroesjnov said:
oleg_u said:
may you give an access tj this file again ? or send its via mail ?
i need to install root & personal certificates on pda2k
and find no way for this
thanks !
Click to expand...
Click to collapse
There seem to be multiple utilities around now-a-days.
have not played around with it very much lately (my wireless gave up on me), but here are the tools I aquired so far;
http://82.92.8.139/ppc
Click to expand...
Click to collapse
big thanx !
oleg_u said:
big thanx !
Click to expand...
Click to collapse
np, hope it is any good for what you want.
Hello,
I upgraded my Device to WM2005 v. 1.60. Because my company does not own an official Certificate, I used the DisableCertChk Tool to realize ActiveSync with the Exchange Server directly. But the tool doesn't work with WM2005. The error message is
"ERROR: Unable to open registry key"
Anyone solved this problem already???
Thanks in advance and cheers to buzz!!
ita01
you can either use http instead of https or you can install certificate services, issue your own certificates and install your CA root cert on the device. (though, I'm not sure if AddRootCert.exe will work on 2005, maybe there is also a different way of adding root certs on 2005).
Thanks. I thought certificate check was obligatory. I'll try next to import our self-signed cert.
you just need to put the cert on the device and click it with your stylus in 2005, just like you did in 2003
you just need to put the cert on the device and click it with your stylus in 2005, just like you did in 2003
I have installed the company certificate to WM2005 and can see it under Root Cert's but when I attempt to conenct I get :
Result:
The security certificate on the server is invalid. Contact your Exchange Server administrator or ISP to install a valid certifiacte on the server
Support Code: 0x80072F0D
The cert is a valid cert created from the server using certificate services. It is named teh same as the servers FQDN that I am trying to connect to ie. server.domain.com
Any ideas?
XDA Exec here and same problem ... doing my wig in at the mo !
I could configure the Exchange server and ISA 2004 firewall for none SSL but that'd just be a complete pain in the but.
Any one got any ideas or suggestions please ?
Simply clicking on the cert in WM2005 did not work for me at all. I found a utility that wasnt required in WM2003 but enabled me to import the cert on WM2005 and then connect to the Exchange server.
The utility is called Addrootcert and just needs to be copied to the device and then select the cert.
dsaunder said:
Simply clicking on the cert in WM2005 did not work for me at all. I found a utility that wasnt required in WM2003 but enabled me to import the cert on WM2005 and then connect to the Exchange server.
The utility is called Addrootcert and just needs to be copied to the device and then select the cert.
Click to expand...
Click to collapse
That didn't work for me. As soon as I run it on WM5 I get an error saying "This application was designed for Microsoft Pocket PC 2002 only". Thanks for the suggestion though .
I have found what could be a solution to this problem but am waiting on some clarification here.
disable cert check on WM 5.0
Hello there!
Did anyone actually manage to sort this issue out?
Thanks!
William
Got it working!!!!
All,
I was having the exact same issue as you guys. We use self-signed certs and as that what the source of my problem was.
I was getting the same 0x80072F0D error as the rest of you. To solve the problem I copied the certificates of our root and subroot certificate authorities as well as the cert for our OWA site. I then tried to install the certs by double-clicking on them. However, when I did that, I got the following error on the certs:
This is not a valid certificate file. Please select a valid file.
After looking around the net, I found that the certs were in Base64 and the certool.exe in WM5.0 cannot handle them. The fix was to save them as DER certs, copy them to the device and install them.
This fixed the problem! I am now using ActiveSync with no issues.
Here is a link to a site that tells you how to export those certs to a DER file without having to completely export the cert from the certificate authority again.
http://www.amset.info/pocketpc/certificates.asp
I hope this helps.
Will Smothers, MCSE
Hey,
Recently a new security rule was set for my exchange server.
Now i have to install a certificate on the device in order to synchronize.
I have it in 2 versions - *.*cer and *.*cab
Appreciate if anyone can share with mе how to install it.
Thanks!
i've been having this issue as well, so far I haven't found away to do it
Same problem. I've to syncronize my work exchange account, but it requires to install a .cer certificate.
Anyone can help us?
stalvatero said:
Same problem. I've to syncronize my work exchange account, but it requires to install a .cer certificate.
Anyone can help us?
Click to expand...
Click to collapse
Hey guys, got it! http://chart.apis.google.com/chart?...market://search?q=pname:com.nitrodesk.nitroid
It's on the market. Works perfect, it has great design and it's exactly for our problem. I did have some issues with the authentication because the exchange allows only WM devices but the developer was so kind and helpful to find a solution.
It has 5 days trial. You can try if it works with your exchange servers.
The app is simply amazing allowing you to install 2 different types of certificates.
Will buy the license for sure.
Finally!
I concur, Nitroid's "Touchdown" works wonderfully. And I cannot say enough about the tech support. In the early versions (which were a bit buggy but still worked well) they staff was responsive and helpful in what turned out to be a very stupid config error on my end. They were willing to help me troubleshoot multiple times (thru e-mail but extremely fast, I have a gmail thread with about 6 or 7 responses in a row in one day). When all was said and done I was left with a "now that's how you handle a frustrated customer!" feeling, in a word, they rock!
P.S Touchdown allows you to choose which folders from your server you wish to see if your like me and don't have everything flooding your inbox. That was a big issue for me on the old work email app from the earlier Hero roms.
Great! will test during these days then!
.cer files import SUCCESSFULLY to get exchange sync
Just got a Sprint HTC EVO running Android (GREAT PHONE!!).
Found out from several posts that there is a function
Settings -> Security -> Install from SD Card
that imports .p12 certificates from the root of the SD Card.
Found out that it recognizes and successfully imports .cer certificate files too!!.
[Warning, you can use usb to copy the certificate to the root of your SD Card, but be sure to disconnect otherwise the "Install from SD Card" will be greyed out.]
hi Kathey
I managed to copy and install the certificate following your instructions but it is still impossible to download attachements can you do it?
I don't know if the certificate was recognized by my HTC Desire.
I've tried everything and I am so disappointed i really need my connection to exchange to open up the attachments.
kathey said:
Just got a Sprint HTC EVO running Android (GREAT PHONE!!).
Found out from several posts that there is a function
Settings -> Security -> Install from SD Card
that imports .p12 certificates from the root of the SD Card.
Found out that it recognizes and successfully imports .cer certificate files too!!.
[Warning, you can use usb to copy the certificate to the root of your SD Card, but be sure to disconnect otherwise the "Install from SD Card" will be greyed out.]
Click to expand...
Click to collapse
@kathey: Just an addition
.cer certificates are normally encoded in DER/binary. Android cannot read these files!
You may need to convert the certificates to Standard PEM (normally with .crt file extension).
I was able to import a PEM BASE64 certificate I exported from the Windows MMC (certmgr.msc) into my G2 after changing the file extension from .cer to .crt
SonofSoong said:
I was able to import a PEM BASE64 certificate I exported from the Windows MMC (certmgr.msc) into my G2 after changing the file extension from .cer to .crt
Click to expand...
Click to collapse
This worked for me as well.
caro23 said:
@kathey: Just an addition
.cer certificates are normally encoded in DER/binary. Android cannot read these files!
You may need to convert the certificates to Standard PEM (normally with .crt file extension).
Click to expand...
Click to collapse
Has anyone used these certificates to read encrypted email successfully on the Android, I can install the certificate from SD card, but cannot decrypt encrypted email, I could do this on windows mobile 5!!! Am I missing a step or funciotnality not available yet on Froyo 2.2
I was trying to install .cer and .crt certificates onto my HTC Desire and it kept saying "No certificates to install" when selecting the files in the root folder of the SD card. Then I generated a .p12 format file, which seemed to work. I don't know if it was because of the format readability or the earlier files were corrupt. Might be helpful.
the procedure: Settings > Security > Install from SD card (u should see the certificate files here if any present on your SD card root folder).
Cheers.
You can check your corporative email using a certificate file with SecureEAS app, is on the market, and it's free.
https://market.android.com/details?id=com.metaworldsolutions.froyo.android.email
certificates
how to generate a P12 format file ?
Where can I get the certificate for the Cisco Any Connect ? How can I generate it?? Help please!
Does this help?? https://market.android.com/details?id=com.cisco.anyconnect.vpn.android.rooted
cowsick said:
Does this help??
Click to expand...
Click to collapse
I know this app. It's just a vpn client.
And this cisco client required certificate to be installed to setup client properly.
And the question is how to get this certiificate? Where can I get it or generate ?
From the cisco router?
cowsick said:
Does this help?? https://market.android.com/details?id=com.cisco.anyconnect.vpn.android.rooted
Click to expand...
Click to collapse
Ever since I moved from Windoze Mobile 6.5 that seamlessly handled certificates, the only solution Ive found for encrypting email is using Touchdown
Great. Tks alot. I was success.
How does one import certificates self signed certificates?
Thanks in advance
Actually, there is a way around out it. As it turns out, you could, there is many ways to do it, create a download link to the certificate and click on it from the phone's browser. This will install the certificate.
I was able to email the cert to my hotmail account as an attachment. Once there you can download and install.
Hi,
i'm new new into Android world, now equipped with Galaxy Tab 10.1.
I don't know how to import certificates for use with VPN.
There is option in the settings to import certificates, but it says something like "Import from USB device".
If I place cert files into tab, this option does not work.
Do I really need to connect some usb stick through adapter (sold separately) and import certificates from this usb device?
Thanks for any help
no text.....
I highly doubt anyone here is going to even know what a certificate is. Sorry.
A lot of us do, I use encrypted email and could only get it to work using NitroDesk as email client, used wifi to transfer the certificates and install them, now I send & receive secure emai with my biller as required by HIPAA (I'm a physician)
My VPN doesnt use a certificate, but ifyou are able to install the certificate, it should work, I am able to use a VPN connection on my TAB and remote deskop into any of my office computers in seconds
5thElement said:
I highly doubt anyone here is going to even know what a certificate is. Sorry.
Click to expand...
Click to collapse
Ok, so do you think there is a more appropriate forum where I can ask about certificates on Android? Searching the web didn't give any answer...
Not sure what certificates you have, but I had to install 2 *.p12 certificates to be able to use WiFi at uni.
I just copied the certificates to sdcard and used the install from USB option in location and security settings.
pkoper said:
Not sure what certificates you have, but I had to install 2 *.p12 certificates to be able to use WiFi at uni.
I just copied the certificates to sdcard and used the install from USB option in location and security settings.
Click to expand...
Click to collapse
I have .cer and .pfx certificate, maybe Android does not like this type of certificates...
Update: I've converted cer->crt nad pfx->p12 (by Firefox) and voila - import successful.
Thanks for tip, closing case.
I can't decrypt emails any longer on Touchdown, had been working for the longest, any one else having problems?
Sent from my GT-I9100 using XDA