How to use mail server with self-signed wild-card SSL certificate?

How to use mail server with self-signed wild-card SSL certificate?


I tried just about everything that comes to mind: mailing myself the certificates and installing them, creating a signed .mobileconfig file, and installing that, turning on Settings > General > About > Certificate Trust Settings


Regardless of what I do, I get the same alert:


"Cannot Verify Server Identiy

The identity of <mail server address> cannot be verified by Mail.

[Details] [Cancel]”


Tapping Details does exactly nothing, except dismiss the dialog, and so does Cancel.


I can’t even see if the server is actually using the proper certificate (I assume it does, since the mail arrived just fine prior to the iOS13 upgrade)


It’s fine that iOS looks out for security, but there comes a point where a user needs to be able to override. Not everything needs to be top secure, and some things are more secure than they look like, e.g. I won’t be fooled by a wild-card certificate I created myself...


Does anyone know how to get something like this working under iOS13?

Up vote post of rcfa Down vote post of rcfa
2.9k views
Posted by
rcfa
Reply
Add a Comment

Replies

For the sake of others: this thread has a workaround:


https://forums.developer.apple.com/message/363140#363140Re: iPadOS 13 Mail Certificate "Cannot Verify Server Identity"


Still, it’s rather annoying, particularly if an account has gigabytes of archived messages that need to be re-downloaded...

...and it makes no sense: given that the cert isn’t just checked at account creation time, it should not be required to delete and recreate the account, just for things to work


I hope Apple fixes that, along with the “details” button not doing anything as it stands now.

Posted by
rcfa
Up vote reply of rcfa Down vote reply of rcfa
Add a Comment