Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the '10.3: Importing self-signed SSL certificates' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
10.3: Importing self-signed SSL certificates
Authored by: thecloud on Oct 28, '03 12:09:53PM

There is a somewhat easier way to import certificates in Panther. If you have the certificate in a file with an appropriate filename extension (.cer/.crt, .pem, or .p7* formats), you should be able to just double-click that file to open it with Keychain Access. A dialog appears, asking if you want to import the certificate. If this is a root certificate and you want the system to trust it, just choose X509Anchors and type your admin password.

Also note that you can do the following to export a certificate, once it's in a keychain:

1. Launch Keychain Access (in /Applications/Utilities/)
2. Click on any certificate in the list to display it.
3. While holding down the option key, click on the picture of the certificate and drag it to your desktop (or other location in the Finder.) A new certificate file with a ".cer" extension should be created. That file can be subsequently imported to a different keychain, copied to a different machine, etc.



[ Reply to This | # ]
10.3: Importing self-signed SSL certificates
Authored by: yellow on Oct 28, '03 12:32:02PM

Now that's awesome.. this was really bugging me. Thanks!



[ Reply to This | # ]
10.3: Importing SSL certificates - where's my X509 keychain?!?
Authored by: mlevin99 on Feb 23, '06 06:43:09AM

I've got a more basic problem (OS 10.3.9, Entourage 2004): there's no X509Anchors keychain available when I drag the certificate to my keychain app! I see these choices: login, microsoft_intermediate_certificates, microsoft_entity_certificates, and System. When I choose "login", the password that came with the .pfx file doesn't work (it says " The certificate password you entered was invalid. Please contact your network administrator for the certificate password. Error: -2147411899). When I choose one of the Microsoft ones instead, the password works fine, but then it asks me to unlock the Microsoft keychain and my master keychain password doesn't work! Does anyone have any idea, what is the password to unlock that Microsoft keychain, and should I be using that one or the X509 one (and if that, where is it to be found)? Why don't I have an X509 keychain?

Thanks,

Mike



[ Reply to This | # ]