Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

Click here to return to the 'Using custom or self-signed certificates in Safari and' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Using custom or self-signed certificates in Safari and
Authored by: e72172 on Jan 20, '04 08:43:09PM

After downloading the root CA from MS Certificate Server, I used the following command in Terminal to add my company's CA to the existing X509Anchors file (certnew.cer is the exact cert download from the MS cert server):

sudo certtool i certnew.cer d k=/System/Library/Keychains/X509Anchors

and to verify the cert in the system X509Anchors file:

certtool y k=/System/Library/Keychains/X509Anchors

Now no longer complains about unknown signer for secure IMAP and SMTP connections.

Note: there is also a /System/Library/Keychains/X509Certificates which seems to hold mostly US .mil certs and FR (French gov?) certs.

[ Reply to This | # ]