Manually Installing a .p12 Keystore File

Jamf Connect Documentation
Solution
Application
Jamf Connect
Content Type
Technical Documentation
Utilities & Services
ft:locale
en-US

A .p12 keystore file generated from an LDAP client in your Google Admin console must be installed on computers to allow Jamf Connect to sync user passwords.

You can manually install this file by adding it to the system keychain via Keychain Access.

  1. Open Keychain Access, and drag and drop to the .p12 file into the System Keychain pane.
  2. When prompted, enter the LDAP client keystore password that you created when you generated the keystore file.
  3. From the System Keychain pane, click the My Certificates tab.
  4. Edit the LDAP certificate's trust settings to make the certifiacte always trusted:
    1. Right-hand click the LDAP certificate and click Evalute "Your-Certificate-Name"..., and then click Continue.
    2. Click Show Certificate...
    3. Expand the Trust expander, and then select "Always Trust" from the pop-up menu.
  5. Allow all applications to access the certificate:
    1. Click the expand triangle next to the LDAP certificate.
      The LDAP private key displays.
    2. Double-click the private key.
      A Private Key window displays.
    3. Make sure Allow all applications to access this item is selected.
      Note:

      If you to restrict access to just ldapsearch, you can add /usr/bin/ldapsearch to the list of applications with access.