I’ve activated https scanning on the proxy (documentation in German: http://wp.me/p1Ml8G-Zg). Everything works with our internal computers, where we deployed the certificate with group policies.
But we also allow our teachers and students to use their own devices over a guest wireless network. Therefore we published on our website a link to http://passthrough.fw-notify.net/cacert.pem. If someone connects to our guest wireless network, he will be redirected to this site. So that should be an easy way to import the certificate.
The problem is that I can’t import the certificate delivered by http://passthrough.fw-notify.net/cacert.pem on Android devices.
I’ve read that Android needs certificates in a binary format. I could export such a certificate from a windows machine.
Is there another way to get a valid certificate for Android from the utm?
or
Is it save to publish the certificate on a public website instead of the only internally available utm fw-notify site? It is the certificate without the private key so there shouldn’t be a security issue. But I’m not sure.
Thanks for any answer.
This thread was automatically locked due to age.