Using safari on OS X 10.8.2 to connect to an internal server via https:, safari indicates a client certificate is required. Tried dragging the certificate from the url field to the desktop and adding it to the system keychain which did not work. Went to the server and exported the certificate then added it to the system keychain which did not work as well.
What could be the problem? The server is a windows machine running IIS.
Any suggestions to try something else?
MacOS – Client certificate required after installing certificate
certificatekeychainmacossafari
Related Question
- MacOS – How to fix curl: (60) SSL certificate: Invalid certificate chain when using sudo
- Client SSL certificate failing in Safari (and what is SOSCCThisDeviceIsInCircle?)
- MacOS – OS X 10.11 CardDAV with self-signed certificate
- MacOS – Can’t set own self-signed root certificate to “Always Trust” on macOS Sierra
- Re-added certificate leads to unknown authority
- IPad – Safari complains about SSL certificate on redirect page
- IOS – Client certificate authentication fails with iOS 13.4.1 (works with 13.2.2)
- Trouble generating a p12 certificate for wallet signing
Best Answer
You are looking for a client certificate. It would seem if you are trying to obtain it from the URL that you are actually getting the server certificate to place in your keychain.
Normally a client certificate is a certificate that identifies the user, or at times the machine, that the request is coming from (ie. not the server you are accessing via Safari).
A client certificate would normally reside in your Login keychain and not the system keychain as it identifies you.
The client certificate is normally provided from the server by some other means rather than accessing the browser, as that is an insecure delivery method.
You need to talk to the owner of the internal server and ask them to provide a client certificate, or if two-way certificate identification is not required then have it turned off in the internal server instead.