Sep 04, 2012 Adding a Java SSL certificate on Mac OSX 3 Comments on Adding a Java SSL certificate on Mac OSX I’m posting this mostly because I do it infrequently enough that I.
Modifying this control will update this page automatically
Keychain Access User Guide
First, save the P12 or PFX file on your Mac’s hard disk. Now navigate to Applications/Utilities and start Keychain Access. Choose File - Import Items and select the PFX/P12 file. For the destination of the certificate, choose Login or System. The certificate should then be stored in your 'Other People' certificate store (you can view it under 'Other People'). Select the certificate Export select 'DER ENCODED Binary X.509 (.cer)' Choose a file name and save. You now have a DER encoded certificate file for your use.
You can create your own certificate authority using the Certificate Assistant in Keychain Access. By becoming a certificate authority, you can issue certificates and validate users.
See alsoCreate self-signed certificates in Keychain Access on MacIssue new certificates in Keychain Access on Mac
-->
After you configure your infrastructure to support Simple Certificate Enrollment Protocol (SCEP) certificates, you can create and then assign SCEP certificate profiles to users and devices in Intune.
Important
For devices to use a SCEP certificate profile, they must trust your Trusted Root Certification Authority (CA). Trust of the root CA is best established by deploying a trusted certificate profile to the same group that receives the SCEP certificate profile. Trusted certificate profiles provision the Trusted Root CA certificate.
Create a SCEP certificate profile
For more information, see Applicability rules in Create a device profile in Microsoft Intune.
Avoid certificate signing requests with escaped special characters
There's a known issue for SCEP and PKCS certificate requests that include a Subject Name (CN) with one or more of the following special characters as an escaped character. Subject names that include one of the special characters as an escaped character result in a CSR with an incorrect subject name. An incorrect subject name results in the Intune SCEP challenge validation failing and no certificate issued.
The special characters are:
When your subject name includes one of the special characters, use one of the following options to work around this limitation:
Certificate Format For Java On Macos Version
For example, you have a Subject Name that appears as Test user (TestCompany, LLC). A CSR that includes a CN that has the comma between TestCompany and LLC presents a problem. The problem can be avoided by placing quotes around the entire CN, or by removing of the comma from between TestCompany and LLC:
Certificate Format For Java On Macos Windows 10
However, attempts to escape the comma by using a backslash character will fail with an error in the CRP logs:
The error is similar to the following error:
Assign the certificate profile
Assign SCEP certificate profiles the same way you deploy device profiles for other purposes.
To use a SCEP certificate profile, a device must have also received the trusted certificate profile that provisions it with your Trusted Root CA certificate. We recommend you deploy both the trusted root certificate profile and SCEP certificate profile to the same groups.
Consider the following before you continue:
Certificate Format For Java On Macos Mac
Note
Certificate Format For Java On Macos MacNext stepsComments are closed.
|
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |