Newsroom Update

Beginning in May, a special Today at Apple series titled “Made for Business” will offer small business owners and entrepreneurs free opportunities to learn how Apple products and services can support their growth and success. Learn more >

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: John Chen
John Chen Author
User level: Level 1
47 points

SSL on Mac OS X Server 10.5.4

I'm also quite confused with all this SSL certificate business on Mac OS X Server 10.5.4 now.

We ran a test environment on a self-signed certificate for months. We instructed test users to ignore the insecure certificate warning when logging on for wiki, ichat, etc. Test users on Macs, we were able to simply force-trust the self-signed certificate to rid of the warning message every time they log on.

Eventually, the company purchased a Verisign-signed certificate. We received a cert.cer file, which contained the CSR code. We were under the impression that we could simply select the current self-signed certificate created on Mac OS X Server and use the "Add Signed or Renewed Certificate from Certificate Authority..." function to import the Verisign CSR code to our existing certificate. Well, to sum it up, nothing worked.

The certificate is still self-signed. We repeated the same steps a few more times. On a few runs, the original certificate simply disappears from the list. Interesting...

Some info that I found on Verisign's own site: HERE

Any ideas?

MacBook Pro, Mac OS X (10.5.4), Mac OS X Server 10.5.4

Posted on Aug 6, 2008 10:47 PM

Reply
4 replies
User profile for user: Paul Vail
Paul Vail
User level: Level 1
144 points

Aug 7, 2008 5:42 PM in response to John Chen

Is there a reason you feel the need to go with Verisign? They are awfully proud of their product, and it is really no better than something from servertastic.com or other vendors. Self-signed will always bite you in the end when just one user fusses about 'it said it wasn't legit' -- regardless of the function the cert serves for your needs. But Verisign? Ick.
Reply
User profile for user: djton
djton
User level: Level 1
10 points

Oct 21, 2008 12:54 PM in response to Kieran Bailey

Same issue here. I even tried to import the cert directly into keychain. I did get the certificate to show up in server admin with the correct signed info, but when I assigned a service to the cert. It actually was handing out the old unsigned cert, so I removed it to try again. Now I cannot get the cert back in server admin at all, just in Keychain under SYSTEM. The self-signed certs only show up under My Keychains... It appears also that Server Admin will only see the certs that are located in MyKeychains. Anyone have any luck?
Reply

SSL on Mac OS X Server 10.5.4

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up