Entrust Datacard

Entrust Certificate Services Support Knowledge Base

Last Modified: 2017-03-02 15:30:20.0

Entrust Datacard SSL/TLS Certificate Installation Instructions - Mac OS X 10.7 server and up

Article Number: 46437

User-added image
Purpose: SSL/TLS certificate installation guide
For Mac OS X 10.7 server and up
User-added image
Skip to installation

Before you begin...

  • Never share private keys files. 
  • If you plan on using the same certificate on multiple servers always transfer the private key using a secure method (e-mail is not considered a secure method of transfer).
  • It is best practice to ensure that you have current and up to date Ciphers and Protocols to ensure the best security when deploying a new Private key and Server Certificate.
  • Make sure you run the SSL Server Test at the end of the installation process to check your certificate configuration against SSL/TLS Best Practices.
  • For more information on SSL/TLS Best Practices, click here.
  • Download the certificate file from certificate pick up link. The file format for downloaded file is in zip compressed file. You need to extract all the certificate files by using any unzip tool. Such as built-in tool on    Windows OS, Winzip, 7Zip etc.
  • The installation steps below are only valid for OS X Server version 10.7 and above. The example below is using OS X Server version 10.11 (El Capitane Server ver 4.0).

Step 1 of 3: Installing Entrust Intermediate certificate.

1. Launch the keychain access management console from the finder. Click on the Spotlight icon on the top right hand corner of the screen and type keychain access.

2. Unlock the System keychain. Right click on the System and select Unlock Keychain “System”.

3. Enter your admin password.

4. If the system keychain has been unlocked successfully, you should be able to see the padlock image has changed to an opened padlock.

5. Open the folder where you save the Entrust SSL/TLS certificate files and drag the intermediate1.crt file into the system keychain.


The Intermediate certificate is now installed to your server.

Step 2 of 3: Installing Entrust SSL/TLS Server certificate

1. Launch the server app from Application section on your OS.

2. Select Certificate on the left column and you should see a pending request show inside Trusted Certificates section.

3. Double click on pending request. Drag the servercertificate.crt to the certificate files box.

The server certificate is now installed to your server.

Step 3 of 3: Binding the SSL/TLS certificate to the website

1. Go back to Server app console then select Website category on the left column. The websites window will open. Under the website section, you should see two entries: "Server Website" and "Server Website (SSL)", Double click on "Server Website (SSL)".

2. Click on arrow button next to "SSL Certificate" field to change the value from Self-signed certificate Entrust SSL/TLS Certificate (e.g. Entrust Certificate Authority - L1K)

3. Restart the web server by sliding the switch off and then on again from the top right of the main websites window.

User-added imageYour SSL/TLS certificate installation is now complete. 

You can verify the installation of the certificate using the Entrust Datacard SSL//TLS install checker.

If you have any questions or concerns please contact the Entrust Certificate Services Support department for further assistance: 

Hours of Operation: 
Sunday 8:00 PM ET to Friday 8:00 PM ET 
North America (toll free): 1-866-267-9297 
Outside North America: 1-613-270-2680 (or see the list below) 
NOTE: It is very important that international callers dial the UITF format exactly as indicated. Do not dial an extra "1" before the "800" or your call will not be accepted as an UITF toll free call. 

Australia0011 - 800-3687-7863
Austria00 - 800-3687-7863
Belgium00 - 800-3687-7863
Denmark00 - 800-3687-7863
Finland990 - 800-3687-7863 (Telecom Finland)
00 - 800-3687-7863 (Finnet)
France00 - 800-3687-7863
Germany00 - 800-3687-7863
Hong Kong001 - 800-3687-7863 (Voice)
002 - 800-3687-7863 (Fax)
Ireland00 - 800-3687-7863
Israel014 - 800-3687-7863
Italy00 - 800-3687-7863
Japan001 - 800-3687-7863 (KDD)
004 - 800-3687-7863 (ITJ)
0061 - 800-3687-7863 (IDC)
Korea001 - 800-3687-7863 (Korea Telecom)
002 - 800-3687-7863 (Dacom)
Malaysia00 - 800-3687-7863
Netherlands00 - 800-3687-7863
New Zealand00 - 800-3687-7863
Norway00 - 800-3687-7863
Singapore001 - 800-3687-7863
Spain00 - 800-3687-7863
Sweden00 - 800-3687-7863 (Telia)
00 - 800-3687-7863 (Tele2)
Switzerland00 - 800-3687-7863
Taiwan00 - 800-3687-7863
United Kingdom00 - 800-3687-7863
0800 121 6078
+44 (0) 118 953 3088