You can make a difference in the Apple Support Community!

When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

Let's Encrypt not supported in iOS 10.2?

In many cases, Safari in iOS 10.2 cannot access websites secured with the "Let's Encrypt" certificate. Instead, unknown error or connection lost is being displayed. Unsecured connections work. In iOS 10.1 both secured and unsecured connections work well. Is Let's Encrypt still supported?

iPhone 5s, iOS 10.2

Posted on Dec 13, 2016 10:20 AM

Reply
6 replies

Jan 13, 2017 12:31 AM in response to jax.99

I'm having a similar issue accessing a site that uses a let's Encrypt certificate...


https://talk.peercoin.net/


When I'm connected to wifi the site loads fine on my iPhone, however when it says LTE the site won't load at all. I just get the Safari cannot open the page error.


However, if I'm using wifi and I add the www. to the URL like this...


https://www.talk.peercoin.net/


I get a error message that says Cannot Verify Server Identity. Here is a screenshot...


User uploaded file


If I click on details it says Let's Encrypt is "Not Trusted," see another screenshot here...


User uploaded file


I've been trying to figure out if this is an issue with the website or if it is an issue with iOS. Any help would be appreciated, thanks!

Jul 9, 2017 5:41 AM in response to jax.99

Apple do trust Let's Encrypt certificates ( https://community.letsencrypt.org/t/which-browsers-and-operating-systems-support -lets-encrypt/4394 and https://community.letsencrypt.org/t/is-apple-blocking-le-certificates/37640 )


If the connexion is refused it's likely

- An invalid certificate chain ( the server doesn't send the correct certificates chain)

- An invalid ssl/tls configuration


Neither of these problem is because it's a "Let's Encrypt" certificate.


To determine the root cause of the problem the best way it to test the server with https://ssllabs.com : is will display the compatibility of the configuration. If there is a "missing intermediate" warning, the certificate chain must be fixed.

Let's Encrypt not supported in iOS 10.2?

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.