Skip to main content
Question

Setting certificate trust

  • June 11, 2009
  • 2 replies
  • 16 views
J
Forum|alt.badge.img+24

Hi-

Does anyone know a scriptable way to set certificate trust level? I'm automating the installation of our root CA onto managed macs and can successfully install them, I now just need to set trust level. I don't see a way to do it with certtool on the command line.

Thanks

j
---
Jared F. Nichols
Desktop Engineer, Infrastructure and Operations
Information Services Department
MIT Lincoln Laboratory
244 Wood Street
Lexington, Massachusetts 02420
781.981.5436

    2 replies

    R
    Forum|alt.badge.img+12
    • rmanly
    • Contributor
    • January 9, 2012

    /usr/bin/security will add a trusted cert to the keychain. I used it when deploying MSN Messenger a few years ago when it was still hard-coded to look in the X509Anchors keychain. *pita*

    You can see an example of how that would work on the last line of JAMF's importCAcert.sh script.

    https://jamfnation.jamfsoftware.com/viewProductFile.html?id=135&fid=459

    J
    Forum|alt.badge.img+24
    • jarednichols
    • Author
    • Valued Contributor
    • January 9, 2012

    Holy cow this is an old post. Yeah I figured this out years ago.

    Terms & ConditionsCookie settingsAccessibility statement