HTTPS/SSL Configuration not working for iOS (Safari)

Configuration
1

Hi,

I’m new to Home Assistant and like it very much so far.

I’m currently struggling with using a self signed certificate for accessing the frontend of a hassio installation on a rpi 3 from my iOS Devices.

I created a self signed certificate and used it to secure the hassio frontend and access to the configurator addon.
This is working fine on a mac when accessing “https://hassio:local:8123” or the configurator on another port. Works in Chrome, works in Safari.

But i just can’t figure out whats the problem when accessing it with safari on my iphone.
I installed and trusted the certificate on my Phone.
I can access the login page, which i thought would mean the ssl connection is successfully established.
But after entering my credentials, there is an hassio error message telling me to try again because the login failed.
My hassio installation is showing ssl handshake errors.

Interestingly the configurator accessed via “https://hassio:local:3218” with the same certificates on the iPhone works just fine.

What additional checks or magic is the main frontend trying to perform?

I’m confused because:

  • general ssl setup seems ok, works on some devices
  • the certificate seems to be ok for safari on iOS when accessing the configurator
  • the main frontend on ios is reachable on iOS, so the certificate seems to be ok
  • some step in the hassio is doing some kind of additional handshake?

what did i miss?
Thank you for your help

2

Does anybody know how to fix this?

3

I finally got this to work.
The problem seem to be the websocket connections used by home assistant.
For those iOS has more restrictive policies. Thats why e.g. the config site did work, but not the main ha interface.
I created a new self singed certificate specifically for the local domain name of my hassio instance (hassio.local).
After setting this as fully trusted in iOS, accessing the web ui and using the app is now working.

4

Hi, ran into a similar issue.
Could you kindly share the steps you took to fix this?

2 Likes
5

I have the same problem on an ipad. I would greatly appreciate your help to resolve this.

6

give it a try with a different browser i.e. Firefox which is much better at describing the exact issue/error in the SSL stack. I was able to trace such an error down to my certificates, which I’m in charge of generating/signing, so I fixed those and Safari is happy once again.