Is there a way to workaround issue with certs valid for long time (10 years)?
I work in a corporation where Macs are not common and we have some internal long live certificates.
I know I can add single cert to trusted but any option to make Mac to trust all internal certs?
Best Answer
There's no client side workaround to simply ignore or bypass invalid certificates. You have 3 options:
Further Reading
Summary
Basically, to avoid having to accept each individual certificate, your IT department will need to supply you with your applicable certificates for the internal sites, servers, and everything else you need to connect to so that you can add them to your browsers and/or key chain. It would be less intrusive if they stood up their own CA server, but if they have self signed certs for all of the internal services, they would need to distribute them to everyone so they could be added in one single go.