We have an internal site accessed over HTTPS. The certificate chain is: RootCert -> ServerCert. We pushed the RootCert to an iPad using a Meraki profile. The certificate shows as being trusted on the iPad under General -> About -> Certificate Trust Settings but the site is still warning about unsecured, untrusted cert. So I push the server certificate (signed by the root ca that's already trusted). It shows under General -> VPN and Device Management -> MDM -> Meraki... but does not show in the Certificate Trust Settings page...so I'm guessing only root certs are added to this page? At any rate, the browser is still complaining that the cert is untrusted. Everything works fine on desktops (Windows/MacOS/Linux) with only the Root Cert trusted, as expected.
Has anyone run into this before? Is it a limitation of iOS or Meraki or something else?