So today I was testing a QR code to all for easier connections to our Guest Wifi, which see's around 3000 users a week. When I connected I got an error that the Network had security issues.
So I immediately check on my laptop, no issue, find someone with an apple device, and that is fine too. Go back and check the cert and it looks fine, it hasn't expired, can't see anything of wrong, but android devices are saying that the cert is untrusted.
Do a little digging around and find a post on Cloudfares community, seems that Android has decided to remove ssl.com as a trusted CA from the android system. This particular cert is issued by ssl.com, so seems like who ever is as lucky as we are, are going to be suffering till either the cert is renewed with a different CA, or Androids next update includes the ssl.com CA cert again. Because there is no way for us to fix it, and support think that Android possibly fixing it in the next release, which should be around this time next year, is the solution to the ticket I logged earlier. Should be fun.
CA cert for the guest wifi.
Apparently both Cloudfare and They are aware of it, but can't do anything.
So instead of thinking out of the box on this one and issue a letsencrypt cert for the interim, or asking cloudfare to rekey the cert with another provider, anything. Thats the solution. Wait and see.
I can't change the wifi connection process till Jan, we in the middle of exams and students use the network to write. And the predominant device that connects to our Guest Wi-Fi is an Android phone. So if you start getting complaints. This is why.
