Entrust Datacard

Entrust Certificate Services Support Knowledge Base

Last Modified: 2016-07-05 16:22:41.0

Why does nothing happen when I try to install certificate in Mac OS X Server?

Article Number: 43333

PROBLEM

Why does nothing happen when I attempt to install my Certificate into Mac OS X 10.4 server?

EXPLANATION

This happens when there is a corrupted key chain. The certificate cannot be installed but the Operating System does not log an error

SOLUTION

This is actually a work-around. What you will be doing is removing any traces left over from a previous certificate then creating a new keychain and installing the certificate. The steps are as follows:

 

1. Launch Server Admin
1.1. Stop any services that use the SSL certificate (Web, Mail, Etc.)
1.2. Delete the old certificate from the Computer's Settings->Certificates pane.
1.3. Quit Server Admin
 
2. Run Keychain Access (/Applications/Utilities)
2.1. Click the "Show Keychains" button in the bottom-left corner
2.2. Select the "System" Keychain
2.3. Delete the old certificate items (e.g. www.hostname.com), there will be a "certificate", "private key" and possibly a "public key" kind of items to delete.
2.4. Quit Keychain Access
 
3. Launch Server Admin again
3.1. Go to the Computer's Settings->Certificates pane again.
3.2. Import the new certificate using the CRT file and the private KEY file.
3.3. If an error occurs, try steps 1 & 2 again.
3.4. Quit Server Admin again
 
4. Run Keychain Access again
4.1. Select the "System" Keychain
4.2. Highlight the new Certificate type for your hostname, look at the top and verify the dates.  This tells you that you got the right certificate imported.
4.3. Quit Keychain Access
 
5. Launch Serve Admin
5.1. Select your SSL enabled services and verify that they still have the certificate selected.
5.2. Launch your SSL enabled services
5.3. Check to make sure they work properly.  Specifically, Run Safari, go to your SSL page and click the Lock in the top-right corner. Verify the dates are correct.
5.4. If an error occurs, try all the steps again, but try including a reboot of the machine between steps 2.4 and 3.

 

TN6803

Affected Products:

  • Entrust Certificate Services 1 Year Advantage SSL Certificate Version Not Applicable Language Not Applicable Platform Not Applicable
  • Entrust Certificate Services 1 Year SSL Certificate Version Not Applicable Language Not Applicable Platform Not Applicable
  • Entrust Certificate Services 2 Year Advantage SSL Certificate Version Not Applicable Language Not Applicable Platform Not Applicable
  • Entrust Certificate Services 2 Year SSL Certificate Version Not Applicable Language Not Applicable Platform Not Applicable
  • Entrust Certificate Services Cert Admin Advantage Server Certificate 1 Year Version Not Applicable Language Not Applicable Platform Not Applicable
  • Entrust Certificate Services Cert Admin Advantage Server Certificate 2 Year Version Not Applicable Language Not Applicable Platform Not Applicable