Tested on my HTC Hero running Android 2.2.1
They do not make it terribly obvious, so I believe this is worth a post.
Android will not import CA cert in the PEM format, you’ll get a “no certificate to install” message at some point.
You actually have to export a P12 certificate containing the client certificate and the CA.
Use this command :
openssl pkcs12 -export -in clientcert.pem -inkey clientcert.key -certfile cacert.pem -name "VPN" -out clientcert.p12
Drop the resulting file (clientcert.p12) at the root of your sdcard.
Go under Settings > Location & Security > Install from SD card (under the section “Credential storage”).
After a few questions, you’re ready to go and you can proceed with the configuration of your Wi-Fi or VPN client (in my case WPA Enterprise Wi-Fi and OpenVPN).
Hi there I am with you up to the point you say ‘use this command’. my question is on what should i use this command?
where do i use this command?
On a Linux machine, for example. Ideally where you issue your certs.
hi
I have rooted SGS with Darkys Rom 9.5 (Fryo 2.2.1) and I did exactly U wrote … but when I go to Settings > Location & Security > Install from SD card i got message: “no certificate file found on the sdcard” … what can I do wrong ?
I don’t know this ROM and not aware if they brought any modification to the certificate system, but it works fine on my HTC Hero (2.2.1) and LG Optimus 2X (2.2.2).
Does the SGS have an internal SD ? If that’s the case maybe the cert is not placed in the correct root location ? (my 2X can be confusing at that, some apps will look up at the root of internal SD, while some other will check external..)