@Bernd said in Private Certificates Not Working Android 7.0 Nougat:
Ok, I’ve been using Davdroid with a self signed certificate that was imported by CADroid. Everything worked well up to the upgrade to Nougat.
I see. According to Android 7.0: Network Security Configuration, user-installed CAs are not trusted anymore by default.
Davdroid shows a screen that the certificate was issued by an unknow CA if it starts to sync. In the windows (that covers ca 3/4 of the screen) it shows the certificate details. Davdroid asks if it should trust the certificate. It gives the options “cancel”, “once” or “always”. Answering “always” makes it vanish.
Did this screen show up before Android 7, too? As far as I understand it, it should not have appeared before, if you have installed the CA system-wide.
It always shows up twice, I suppose for calendar and contacts. I have one calendar and one addressbook to sync with a Baikal server.
(A known problem, which is going to be fixed soon.)
Androids account settings shows that there are synchronisation problems in the davdroid account. Last sync is from the day when I upgraded.
Can you refresh the collection list in DAVdroid? When the popup shows up, it should work then.
I don’t have the problem with my phone that runs Marshmallow. So I also think it comes from Androids new policy of handling certificates.
I guess it’s a combination of MemorizingTrustManager problems plus the Android 7 changes, but I’d like to verify that.
Can you try to
- terminate DAVdroid in the task manager,
- launch DAVdroid, go into an account, “Refresh CalDAV/CardDAV collections”
- if a popup appears, “always accept”
- terminate DAVdroid again
- lauch it again, go into this account, synchronize?