Hello, so as much I loved to play with Hackintosh back in the day my Apple skills are not amazing. I'm a network administrator for small business and I'm having a problem with Child SSL Certificates on MacOS X 10.12.
So Our Corporate Windows server serves via SMB (Active Directory Federation Services) and HTTP/HTTPS (IIS) so with that setup, there was a Server Root CA Certificate created for use on the Intranet Services (Via VPN) Now on Windows, I just installed the Exported Root CA Certificate via Active Directory on login.
For Mac, I clearly can't do that so I put the exported Certificate into the SMB Shared drive and on the mac opened `KeyChain Access.app` installed the Certificate into the `System` Section and set it to 'always trust'. however, when any web browser Safari, Firefox or Chrome tries to access one of the intranet sites it still gives an HTTPS Certificate Invalid error. So does anyone know how I get around this so that child certificates signed by the installed Root CA will work in the web browsers correctly without having to install every Child Certificate manually the same as a Self Signed?
So Our Corporate Windows server serves via SMB (Active Directory Federation Services) and HTTP/HTTPS (IIS) so with that setup, there was a Server Root CA Certificate created for use on the Intranet Services (Via VPN) Now on Windows, I just installed the Exported Root CA Certificate via Active Directory on login.
For Mac, I clearly can't do that so I put the exported Certificate into the SMB Shared drive and on the mac opened `KeyChain Access.app` installed the Certificate into the `System` Section and set it to 'always trust'. however, when any web browser Safari, Firefox or Chrome tries to access one of the intranet sites it still gives an HTTPS Certificate Invalid error. So does anyone know how I get around this so that child certificates signed by the installed Root CA will work in the web browsers correctly without having to install every Child Certificate manually the same as a Self Signed?