Emby app on IOS iPhone Xs 12.2 not connecting https

[beit 0]

Hi there,

 

I can't seem to get my app to work with the https cert that I have installed on my emby server.   I can access my server using safari or chrome browser on my phone, but the app will not (and has never) been able to connect remotely, but it works internally on my LAN.  I use a Let's encrypt certificate that gives no errors and I use https on LAN and via Internet outside firewall.  I use a synology server running Nginx to redirect to my internal Emby server (not running emby on synology).  The emby server is a windows server that is the latest 4.0.3.0 and works wonderfully.

 

I've read lots of problems in getting the app to work and I've got an emby premier account for the past year which I got in order to use the app, but it hasn't worked.  I'm thinking to stop it as I'm paying monthly, but unable to use the application on my iPhone. 

 

Can anyone help me to understand what to do as I keep hoping the app would get addressed and can't find anything on my networking.  I'm running the latest emby app 1.7.6 and keep hoping the next iOS app will fix my problem...

[Luke 37317]

Hi, to my knowledge, iOS devices do not trust Lets Encrypt certificates and this is the reason for your problem. You will need a certificate that the device trusts. here is some info that might help:

 

https://community.letsencrypt.org/t/connection-is-not-trusted-ios-only/55374

https://community.letsencrypt.org/t/ios-clients-problems-with-the-certificate/83661/10

 

The second link has information on how to determine if your device trusts your certificate. Please let us know if this helps. Thanks.

[beit 0]

This doesn't really help with a work-around other than getting another certificate.  Is there an open source certificate that works with the iOS app?  It's strange that the same cert works when I use Chrome or Safari to visit the site, but just not the native iOS app.  Does that mean there is nothing can be done on the app side and my only choice is to get a different cert?

[Luke 37317]

It doesn't matter if the certificate is open source or not, what matters is whether or not iOS trusts it.

 

The reason it works in the browser is because the browsers offer the ability to force the device to accept it. We don't have that in the app because it's not currently possible.

[beit 0]

ok.. that helps explain it. I've tried to confirm on my iPhone whether the certificate is trusted, but can't seem to find out how to display the certificate details.  I'm not sure why it is working on my LAN, but I'll check in the event that the app falls back to http when on the LAN and of course it's forced to https externally.

 

Do you know of a cert that for sure works which I can try to setup or if there is a proper way to get the lets encrypt cert so that the iOS trusts it?  I've read the links you provided, but not sure yet how I can confirm or plan to create a proper cert. Would like to be able to use the app instead of through the browser.

 

Thanks for the help and guidance.

[Steve E 0]

hello - pmfji

 

if you got a cert installed here

 

settings -> general -> profile ->  your cert

 

trust it here

settings -> general -> certificate trust settings -> your cert -> toggle on