How do I install a trusted root certificate on my Mac?

I keep getting errors about not being able to establish a secure connection with my mail server in Entourage because of a bad root certificate. My ISP has sent me the necessary "trusted root certificate" file, but I have no idea how to install it. Help!

Dave's Answer:

I know just what you mean because I also use an SSL connection to securely access my mail server, keeping things quite a bit more secure on an open wireless wifi network. For a long while I was also getting the error I bet you get:

Cannot establish secure connection: no root ca certificate installed

It turns out that Microsoft has some pretty decent instructions on how to install the certificate that you've gotten from your ISP here: install a trusted cert, but I'll summarize here too!

You first step is to save the certificate to the desktop and double-click on it. It'll launch the Keychain Access application and show you the following dialog box:

Mac OS X: Keychain Access: Add Certificates

Now you'll want to click on the "Keychain" pop-up menu and select "X509 Anchors":

Mac OS X: Keychain Access: Add Certificates: X509

Now click "OK" and enter your administrative password when it prompts you:

That should do the trick. You can verify your certificate's installed properly by going to Applications --> Microsoft Office 2004 --> Office and launching "Microsoft Cert Manager". Choose "Apple Trusted Root Certificate Authorities" and then find your new certificate. Double-click it and you should see what I see here:

Mac OS X: Microsoft Office: Microsoft Cert Manager

That all there is to it. Quit and restart Entourage and you should be clear of that pesky error message forever, or at least until the certificate expires!

Categorized: Mac OS X Help (Article 7570, Written by Dave Taylor)
Tagged: entourage, microsoft office, root certificates, security
Previous: How do I register my phone number with the Do Not Call registry?
Next: How do I chop out a segment of an mp3 audio file?

Subscribe!

Never miss another Q&A article! Click to subscribe:

Comments

Hello! Hi, My name is Kasey, I'm 20 years old, and am currently residing in Manhattan, KS. I would like to get on Myspace.com, to basically keep in touch with the outside world, because we don't leave center much. (I am in job corps)
They filter every proxy I find, and I'm running out. Can you help me?

Posted by: Kasey at September 11, 2007 7:41 AM

I understand the steps of the procedure outlined above on installing root certificates. However, the first step seems to not be doable; "You first step is to save the certificate to the desktop and double-click on it. It'll launch the Keychain Access application and show you the following dialog box:" How do I actually find the #$%@ certificate to save it? All I get is the "unable to establish . . . " message box, but no certificate.

Posted by: Gordon Antonello at November 21, 2007 1:40 AM

To save the root certificate to your desktop, click on "Show Certificate" then Option+Drag the certificate icon to the desktop.

Posted by: Gavin Anderson at December 17, 2007 7:02 PM

Someone forgot Step 2: Where is The Root Certificate to save?

Step 1: Get error box requesting root cert.
Step 2: ?
Step 3: Drag the Root Cert to the correct location.

lolwtf

Posted by: dude at June 24, 2008 11:49 AM

Where do I get the digital root certificate?

Posted by: Dave at February 3, 2010 9:06 AM

Where do you get the digital root certificate at?

Posted by: Dave at March 21, 2010 9:27 PM

Hello Dave,

Why the pop-up menu doesn't have X509Anchors?

Posted by: della at October 26, 2010 5:27 AM

I have something to say, now that you mention it, but ...

I do have a lot to say, and questions of my own for that matter, but first I'd like to say thank you for all your efforts on this Web site by buying you a cup of coffee!

I do have a comment, now that you mention it!

How can I fix too little virtual memory in Windows?

How do I install Windows XP in Boot Camp on my Mac?

How do I download photos onto my Apple iPhone?

How do I convert WMA to MP3 audio files in Windows Media Player?

How can I add a Google search box to my site?

How can I put music on my Apple iPod?

How can I get my Nintendo DS to connect to the Internet?

How do I reset my Mac OS X administrator (root) password?

Recent Entries

How can I pair a bluetooth speaker with my MacBook Pro?

Is my copy of Windows 7 "activated" and genuine?

The Scoop on Merchant Services and Credit Card Processing?

How can I change my Windows PC computer name?

Introduction to Google Docs Spreadsheets

Add Po.st Social Media (Facebook, Google Plus) widgets to your blog?

I Need Help!

Even More Help

Apple iPad Help
Articles and Reviews
Auctions and Online Shopping
Blogs and RSS Feeds
Building Web Site Traffic
Business and Management
CGI Scripts and Web Site Programming
Computer and Internet Basics
d) None of the Above
Facebook Help
Google Plus Help
HTML and CSS
Industry News and Trade Shows
iPhone and Cell Phone Help
iPod, Sony PSP and MP3 Player Help
Mac OS X Help
Pay Per Click (PPC) Advertising
Search Engine Optimization (SEO)
Shell Script Programming
Tech Support Video Help
The Writing Business
Twitter, LinkedIn and Social Network Help
Unix and Linux Help
Video Game Tips and Help
Windows PC Help
WordPress Help

film blog - social media / blogging speaking - business blog - Colorado photography - free tech support

© 2002 - 2012 by Dave Taylor. All Rights Reserved.

Note: This web site is for the purpose of disseminating information for educational purposes, free of charge, for the benefit of all visitors. We take great care to provide quality information. However, we do not guarantee, and accept no legal liability whatsoever arising from or connected to, the accuracy, reliability, currency or completeness of any material contained on this web site or on any linked site.

business blog | sitemap | link to us!