Importing an ISA .pem certificate for ironport on a MAC OSx

Importing an ISA .pem certificate for ironport on a MAC OSx.

Open Keychain Access Manager and select the Keychain ‘SYSTEM’ and the Category ‘Certificates’.

Navigate to File menu > Import Items.

Browse to the certificate (.pem) file that you want to import and open it.

Put your login password and click on ‘Modify Keychain’

 

Once the certificate is imported successfully, you need to change the certificate trust policy. As you can see there is a red X on the certificate icon which means the certificate is not a trusted certificate as per your MAC security settings.

Now right click on the certificate and choose > ‘Get Info’ from drop down menu.

 

Click the Trust disclosure triangle to display the trust policies for the certificate.

To override the trust policies, choose ‘Always Trust’ when using this certificate from the pop-up menus.

Put your Login Password and then click on Update Settings.

Once this is done the certificate icon gets changed.

 

Changing Proxy Authentications Settings.

Click on WiFi icon on the top right corner and go to “open Network Preferences” from drop down menu.

Select your WiFi adapter and click on ‘Advance” option.

Check “Web proxy (HTTP)” and “Secure Web proxy (HTTPs)”. In the “Web Proxy Server” field type the Proxy server IP address (172.16.***.*5) and the Port number (8085). You have to check mark the option “Proxy server requires password” and put your  Active Directory Login name followed by the domain name (tecnet\User Name). You may bypass the proxy settings for local intranet traffic by giving an exception in “Bypass proxy Settings for these hosts & Domains:” section and then Click “Ok”

Click on “Apply” on the previous WiFi settings box.

Now again open Keychain Access Manager and select the Keychain ‘Login’ and the Category ‘All Items’.

Navigate to the proxy Keychain entry for “Internet Password” now right click on the IP 172.16.***.*5 and click on > ‘Get Info’ from drop down menu.

Click on “Access Controll” tab on the Info Pop up and select “Allow all applications to access this item” radio button.

Click on ‘Save Changes’ option and put your Login password in the Keychain access popup.

You need to do the same process for second Internet Password entry as well.

Now you won’t be asked for a proxy server authentication for the authorized websites by the organization. Like his:

But you might get the same proxy authorization pop up while opening or working on any website where some blocked contents on a web page may try to access your Internet connection. You may try to put your user name and password only once if this works otherwise cancel the pop or hit the Escape Key on keyboard.

Now your Internet connection is ready to use. You can browse safely.