Mac OS X Server Certificates and Kerio

Mac OS X Server Certificates and Kerio

January 30th, 2011 // 4:11 pm @

I was trying to be a little generic and generated the CSR for an SSL certificate for a clients’ new Kerio Connect mail server using the built-in Certificates functionality within Mac OS X Server Admin.

Once the certificate has been signed, it was very easy to import the signed certificate back into Mac OS X Server.

What was not clear was how to subsequently export the private key from the Mac OS X keychain so I could use it with Kerio Connect.

Found this very useful article on macosx.com with the “trick” to exporting private keys from the System keychain in Mac OS X Server.
http://macosx.com/forums/mac-os-x-server/309491-exporting-certificate-private-key-keychain.html

That, however, is only have the trick. Once you have a .p12 file from Keychain Access, you need to further convert it back to a PEM formatted .key file for use with Kerio Connect.

openssl pkcs12 -in host.domain.p12 -nocerts -nodes -out host.domain.key

That does it… then you can go to the Kerio Administration interface, and select SSL Certificates under Configuration, and import the key and the certificate.

Set the new certificate as Active and then restart Kerio Connect and it is all good!


Category : Mac OS X Server

One Comment → “Mac OS X Server Certificates and Kerio”


  1. MacWorks, LLC

    10 years ago

    You my friend are a Rock Star! Thanks for this post and for providing a solution to get our Mac Server jiving with our Kerio installation.

    Thank you!


Latest News

Certifications