• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: [iPhone] HTTPS / client Certificate / configuration profile
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [iPhone] HTTPS / client Certificate / configuration profile

  • Subject: Re: [iPhone] HTTPS / client Certificate / configuration profile
  • From: Sandro Noël <email@hidden>
  • Date: Wed, 3 Nov 2010 12:08:54 -0400
Yes it works.
Thanks for the hint.

Safari first asks me to accept the server certificate.
second step it warns me that the web site demands a client certificate and asks me to choose one from a list.
once selected i am prompted for user name and password from the server.

Which is the intended process.

I get the proper challenge from NSURLConnection delegate selectors.
somehow my application does not find the certificates when it is being challenged for the client certificate.
I must be doing something wrong in the lookup.

to be honest all this authentication is still a little blurry for me at this point.
I understand the concept...where should i look up for the certificates/credentials...
it is somewhere else than the keychain ?

to query the keychain I  currently use...
[NSDictionary dictionaryWithObjectsAndKeys:
	(id) kSecClassIdentity, kSecClass,
	kSecMatchLimitAll, kSecMatchLimit,
	kCFBooleanTrue, kSecReturnRef, nil],

[NSDictionary dictionaryWithObjectsAndKeys:
	(id) kSecClassCertificate,  kSecClass,
	kSecMatchLimitAll, kSecMatchLimit,
	kCFBooleanTrue, kSecReturnRef, nil],

both query come back empty.

Added info:
	The Configuration profile's Identity is the same as the Bundle identifier and the
	Entitlements application-identifier and the keychain-access-groups
	as i read, the applications only access keychains for their access groups.
	if that makes a difference...


Sandro.

On 2010-11-03, at 11:51 AM, Sandro Noël wrote:

>>
>> When you tell "Install certificate", I guess you mean "Certificate and private key" isn't it ?
>
> Yes the p12.
>
>>
>> Does it works if you try to log using Safari ? I'm using it to access https with cert based auth, and don't get any problem.
>
> Will try that and get back with the report.
>
> Sandro.
>
> _______________________________________________
>
> Cocoa-dev mailing list (email@hidden)
>
> Please do not post admin requests or moderator comments to the list.
> Contact the moderators at cocoa-dev-admins(at)lists.apple.com
>
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden

_______________________________________________

Cocoa-dev mailing list (email@hidden)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
References: 
 >[iPhone] HTTPS / client Certificate / configuration profile (From: Sandro Noël <email@hidden>)
 >Re: [iPhone] HTTPS / client Certificate / configuration profile (From: Jean-Daniel Dupas <email@hidden>)
 >Re: [iPhone] HTTPS / client Certificate / configuration profile (From: Sandro Noël <email@hidden>)

  • Prev by Date: Re: UITouch's function locationInView not working with iOS4.2
  • Next by Date: Re: FastEnumeration for TWO kinds of objects in class.
  • Previous by thread: Re: [iPhone] HTTPS / client Certificate / configuration profile
  • Next by thread: Re: [iPhone] HTTPS / client Certificate / configuration profile
  • Index(es):
    • Date
    • Thread