LA D.O.G. TAK — iOS (iTAK) Setup Instructions ============================================== The TAK Server uses a self-signed certificate authority (LADOG CA). iOS will not complete the TLS handshake to the server unless the CA is installed AND manually trusted on the device. This is required before either "Direct Connect" or any data-package import will work. There are TWO mandatory steps. Step 2 is easy to miss. STEP 1 — Install the CA profile ------------------------------- 1. On the iOS device, open Safari and download: http://135.148.149.74/LADOG_CA.mobileconfig 2. iOS will prompt: "This website is trying to download a configuration profile. Do you want to allow this?" — tap Allow. 3. Open Settings -> General -> VPN & Device Management. 4. Under "Downloaded Profile" tap "LADOG TAK Server CA" -> Install (top right). 5. Enter the device passcode and confirm Install. STEP 2 — Enable trust for the CA (REQUIRED — iOS will silently block until you do this) ---------------------------------------------------------------------------------------- 1. Settings -> General -> About -> Certificate Trust Settings. 2. Under "Enable Full Trust For Root Certificates", toggle ON the entry labeled "takserver" (or "LADOG"). Confirm the warning. You can now use either of the connection methods below. OPTION A — Per-user enrollment (recommended) -------------------------------------------- Use the user's personal package, e.g. http://135.148.149.74/Nate_LADOG.zip 1. Tap the link in Safari -> tap the share icon -> "Open in iTAK". 2. iTAK will import the package and the server appears in the Servers list, already configured. Connect. OPTION B — Direct Connect / QR code ----------------------------------- Use http://135.148.149.74/iTAK_Setup.zip OR scan the QR code, which encodes: LA D.O.G. TAK,135.148.149.74,8089,SSL You will be prompted for username/password (your TAK Server account). Troubleshooting --------------- - "Format of this configuration could not be read or is not supported": the package XML is malformed. Re-download — the packages were rebuilt on 2026-04-22 to be iTAK-compatible. - "Connection failed" / handshake error: the LADOG CA is not trusted on the device. Repeat Step 2 above. Confirm the CA appears as trusted (green) under Certificate Trust Settings. - iTAK shows the server but won't connect: the device clock is wrong (TLS rejects skewed time), or the package's p12 password doesn't match the cert. Both default to "atakatak".