Import existing CA from OSX OpenDirectory



  • Hello,
    I am trying to import an existing Intermediate CA from an OSX OpenDirectory OR create a CSR in pfsense and sign it using an existing OpenDirectory IntermediateCA. This is needed as our devices have existing trust profiles for the OSX certs. I keep getting invalid certificate data regardless of whether I try to import an existing CA or paste in the signed certificate.

    For the signed cert case, I did ensure tha the following lines existed in the cert being pasted in
    –---BEGIN RSA PUBLIC KEY-----
    -----END RSA PUBLIC KEY-----

    Any ideas? Thank you!



  • Anyone had any positive experience doing this?


  • Banned

    @yellowbrick:

    For the signed cert case, I did ensure tha the following lines existed in the cert being pasted in
    –---BEGIN RSA PUBLIC KEY-----
    -----END RSA PUBLIC KEY-----

    This is NOT certificate.


  • LAYER 8 Netgate

    What version of OS X Server?

    What is your end goal?  Not what certificates you think you want where, but what do you want to be able to do with them?

    Certificate handling in OS X Server has always been, shall I say, squirrelley.


Log in to reply