I have an SSL certificate issued by RapidSSL, via Geotrust. The CA is RapidSSL SHA256 CA – G3. It turns out the root CA is not installed by default in Android (5.0.2 in my case). I was getting the error; ‘..Certificate cannot be verified’. Android applications using SSL to the site would also fail, the Alfresco Mobile application was failing.

image

The solution is to install the CA onto Android. I managed to get the CA cert here; https://ssl-tools.net/certificates/nakw2x-rapidssl-sha256-ca-g3 I downloaded the CA certificate in PEM format on Android and it was immediately available for installation. I was prompted for a name and saved.

Note that the installation Lock screen device policy, i.e., for the CA certificate to install the lock screen must be secured.