User profile for user: fabio168
fabio168 Author
User level: Level 1
50 points

Default macOS certificates not trusted and not verified by third party

When I start a new Mac OS system, from skratch, inside the keychain application, I noticed there are 3 certificates that are not trusted or not verified yet. I know I can double click eachone of them and make them trusted for the entire system.


But my question is what are those certificates for? What is the purpose of these certificates and should I make them trusted? or not?


One certificate is located inside the Keychain under the Login section: member: xxxxx-xxxxx-xxxx-xxxx-xxxxxx (expire in one year from the current date) (this certificate has not been verified by a third party)


The other 2 certificates are located inside the Keychain under the System section: com.apple.kerberos.kdc and com.apple.systemdefault (expire in 2040) (this certificate has not been verified by a third party)


Thank you in advance for your help

MacBook Pro 15", macOS 10.14

Posted on Feb 25, 2020 8:37 AM

Reply

Similar questions

1 reply
User profile for user: Kappy
Kappy
User level: Level 10
362,199 points

Feb 25, 2020 11:03 AM in response to fabio168

Without more information it's not possible to give you fully certain advice. You have two certificates associated with Kerberos which is an authentication protocol used for network connections using LDAP and Active Directory. You do not want to delete them.


The first one is not identifiable. If it is one included with the macOS installation, then do not remove it.


Lists of available trusted root certificates in macOS


Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Default macOS certificates not trusted and not verified by third party

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up