/build/static/layout/Breadcrumb_cap_w.png

Deploying certificate to Macs

Hello.  New member here.  I need to deploy certificates for our Macs and was wondering how others go about this.  I'm thinking that the server these systems need access to will have a self signed cert from an internal CA.  I believe what I need to do is install a root certificate on all the Macs so that they trust this server implicitly.  I am vaguely familiar with importing certs into the keychain but I'm a little unclear on the sequence of events.  I'm thinking copy the root cert to the machine (probably /var/temp), import the cert and then somehow get the machine to trust that cert. It's the trusting the cert part where I'm a bit unclear.  

I know this can be done by other means, particularly profile manager, but we have a K1000/K2000 environment with the Macs already in KACE so I'd prefer to use what we have. Any help appreciated.

Ken-

0 Comments   [ + ] Show comments

Answers (1)

Posted by: jknox 8 years ago
Red Belt
0
I'd probably use a kscript.  Add the cert as a dependency.  Then, use a terminal command similar to the one in the link https://derflounder.wordpress.com/2011/03/13/adding-new-trusted-root-certificates-to-system-keychain/

One thing to note is that the KACE agent runs as root, so you do not have to use sudo.

Don't be a Stranger!

Sign up today to participate, stay informed, earn points and establish a reputation for yourself!

Sign up! or login

Share

 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ