iOS9 prompting for SSL Client certificate every time

Experienced the same issue. Only one client certificate is prompted for one time. But there's only one certificate to select from so the prompt does not make sense IMHO.

Anyone else experienced this? Any workarounds?

Many thanks

Jens

The only workaround I've found is to use Safari instead of the home screen web app. Safari only prompted me once and remembered the choice on subsequent page loads. I submitted a bug report to Apple on Sep 17th and it was closed as a duplicate of 22378507. So they are at least aware of it.

Thanks for the details. This worked so well in iOS 8 and now getting constantly the two popups when starting our frequently used web app. The Safari workaround works but is not as convenient as the home screen web app (if it worked without the prompts). I hoped this would be fixed with the next update but iOS 9.0.2 still shows the same issue. Does anybody have an update of the status of bug 22378507?

I opened a Bug report for this and would encourage anybody that finds this behavioir anyoing to do the same to raise pressure on Apple.

That being said it seems that Apple is indeed aware of the issue and tries to mitigate impact on the user experience. In 9.1 beta 3 there's now only one popup where you can chose your (single) certificate and also cance the process. So we're down from two unneccessary popups to 1 unneccessary popup.

My guts feeling is that having this popup is a (bad) way to workaround some security issues they have with certificates. If anybody from Apple could clarify on this, would be highly appreciated.

Edit: I installed beta 3, so I corrected that in the above text. Not sure if new behavior is already available in beta 2, so YMMV

Cheers

Jens

We're having the same issue, but with one interesting difference: we never had to choose the cert prior to iOS 9 - the devices would auto-detect them. Our company uses certs on our iOS devices to let our users access our company intranet and Oracle. Prior to iOS 9, the pages would simply render, as the device obviously auto-detected the cert. Now we have to manually select the cert on the first instance of both (intranet & Oracle). It does seem to remember them after the fact, unless the device is wiped or the cookies are cleared from Safari.

Since you're saying you had to select the cert once and how have to select twice - it seems that they definitely added something extra to the mix. Hopefully they're working on getting it fixed soon.

Thanks for your further remarks on the topic.

I also suspected that there might be some (minor) mismatch between the certificate stored on the device and the configuration of the server requesting it but to no avail so far.

I also cross checked with another client certificate (actually a sap.com SSO certificate for use of their customer support center) with the same result. The certificate gets prompted for selection, even as there's only one matching cert on the devices.

What really bugs me big time is the fact that (much as usually) you don't get any details why that pop-up was introduced in the first time and whether there might be situations where (in a controlled environment - read "your own server, your own devices, your own certificates") you could configure the server / devices / certificates alike so that the popup might be surpressed.

But alas, seems like Apple is giving love to "Enterprise" pretty much boils down to get your developer account paid.

But enough for the rant, hope this gets fixed sooner or later as I still believe it's a massive disruption of the user interface flow.

Cheers

Jens

Just to clarify: We also did'nt have to chose the certificate before iOS 9. I only figured that between 9.0.2 and 9.1 beta 3 Apple did something the way the popup is displayed.

Before 9.1 beta 3 there are 2 popups, after 9.1 beta 3 there's a single combined popup where you could chose your certificate and abort in one single popup.

I hope that shed some light into this.

Cheers

Jens

****. I was hoping you had to select a cert prior as well. At least, that would give me some hope that the fix from two to one that you're seeing would have meant going from one to zero for me. A man can still dream, I suppose... 😉

Has anyone made any progress in solving this issue?

Unfortunately not. Still an issue.

Cheers

We had a similar problem with Home screen icons and certificates, it repeatedly kept asking for the certificate.

However our webapplication did work properly with the safari browser.

But with Apples latest update (9.2) our problem was resolved