Difference between revisions of "Add client certificate to keychain on macOS"

From SNIC Documentation
Jump to: navigation, search
(5 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
= General =
 
= General =
  
Most applications on ''macOS'' (previously named ''OS X'') uses ''Keychain Access'', the operating system certificate store, to avoid forcing users to add/import the certificate in all applications where it's used.
+
Most applications on ''macOS'' (previously named ''OS X'') uses ''Keychain'', the operating system certificate store, to avoid forcing users to add/import the certificate in all applications where it's used.
  
This procedure describes how to add a client certificate to ''Keychain Access''.
+
This procedure describes how to add a client certificate to the login Keychain using the ''Keychain Access'' utility.
  
 
The common reason for having to do this is having used the ''Firefox'' web browser to obtain a client certificate and you wish to make it available to other applications (for example ''Safari'' and ''Cyberduck'').
 
The common reason for having to do this is having used the ''Firefox'' web browser to obtain a client certificate and you wish to make it available to other applications (for example ''Safari'' and ''Cyberduck'').
 +
 +
As an alternative to export from Firefox and adding the exported certificate to the Keychain you can simply request an additional certificate using the ''Safari'' web browser, which stores it directly into the Keychain.
  
 
= Instructions =
 
= Instructions =
Line 12: Line 14:
  
 
* Make sure the '''login''' keychain is selected.
 
* Make sure the '''login''' keychain is selected.
 +
 +
[[File:MacOS-Keychain-add-1.png|600px]]
  
 
* '''Import Items...''' on File menu.
 
* '''Import Items...''' on File menu.
 +
 +
[[File:MacOS-Keychain-add-2.png]]
  
 
* Locate the certificate backup made from Firefox or other web browser.
 
* Locate the certificate backup made from Firefox or other web browser.
 +
 +
[[File:MacOS-Keychain-add-3.png|600px]]
  
 
* Enter the password chosen backup time which protected the certficate and key backup.
 
* Enter the password chosen backup time which protected the certficate and key backup.
 +
 +
[[File:MacOS-Keychain-add-4.png]]
  
 
* If successful, the imported certificate should appear in the list of certificates for the login keychain.
 
* If successful, the imported certificate should appear in the list of certificates for the login keychain.
 +
 +
[[File:MacOS-Keychain-add-5.png|600px]]
 +
 +
 +
 +
[[Requesting a grid certificate using the Sectigo SSO Portal|< Requesting a grid certificate using the Sectigo SSO Portal]]

Revision as of 13:19, 16 November 2020

General

Most applications on macOS (previously named OS X) uses Keychain, the operating system certificate store, to avoid forcing users to add/import the certificate in all applications where it's used.

This procedure describes how to add a client certificate to the login Keychain using the Keychain Access utility.

The common reason for having to do this is having used the Firefox web browser to obtain a client certificate and you wish to make it available to other applications (for example Safari and Cyberduck).

As an alternative to export from Firefox and adding the exported certificate to the Keychain you can simply request an additional certificate using the Safari web browser, which stores it directly into the Keychain.

Instructions

  • Launch Keychain Access by opening Finder and navigating Applications -> Utilities -> Keychain Access
  • Make sure the login keychain is selected.

600px

  • Import Items... on File menu.

File:MacOS-Keychain-add-2.png

  • Locate the certificate backup made from Firefox or other web browser.

600px

  • Enter the password chosen backup time which protected the certficate and key backup.

File:MacOS-Keychain-add-4.png

  • If successful, the imported certificate should appear in the list of certificates for the login keychain.

600px


< Requesting a grid certificate using the Sectigo SSO Portal