mTLS certificate not installing in Work Profile on Android

ksorenson · January 2, 2025, 7:35pm

What is the name of the domain?

myexample.ca

What is the error number?

N/A

What is the error message?

N/A

What is the issue you’re encountering

mTLS Certificate not working at all in Android Work Profiles

What steps have you taken to resolve the issue?

tried different certificate types and stores
different browser (ie firefox, brave)
different deployment types
google-FU

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Full (strict)

What are the steps to reproduce the issue?

Note: The mTLS certificates work just fine under desktop/laptops. It’s just Android (11, 12, 13, 14 tested) that has this issue.

import the certificate into Android. (our users only have a work profile, not a personal and work profile)
Verify it is identified as a user certificate in Certificates and Encryption Settings under work profile
Attempt to access the mTLS protected website which requires the user certificate to be present
Blocked page by Cloudflare

Note 2: if you attempt to use it on a device with Work AND Personal profiles, the certificate seems to be installed under the work profile, but actually works in the personal profile.

MariG · January 8, 2025, 2:55pm

Hi there,

I noticed that you’ve already created a ticket regarding this issue. To ensure the protection of your private information, we will address your questions directly through that ticket.

Thank you

Topic		Replies	Views
mTLS certificate on Android work profiles Security	1	298	July 12, 2024
mTLS Fetch not working on Workers Workers DocFeedback	0	590	January 25, 2024
SSL working on one domain but not the other Security dash-ssl-tls , dash-troubleshooting	4	2329	June 18, 2021
Trouble with mTLS client certificate in Windows Security	9	82	January 23, 2025
mTLS certificate install android Security	1	989	February 6, 2024