Configuration Profile Reference: certificate payload types are not documented.
| Originator: | j.a.grigutis | ||
| Number: | rdar://14121111 | Date Originated: | 11-Jun-2013 06:31 PM |
| Status: | Duplicate/9032984 | Resolved: | |
| Product: | Documentation | Product Version: | |
| Classification: | Reproducible: |
Summary: Although Profile Manager and Configurator output several payload types related to certificates (com.apple.security.pkcs1, .pkcs12, .root), these types are not documented in the Configuration Profile Reference. Notes: It would be good to also know how to package certificates for deployment via configuration profiles. For example, can I include the whole certificate chain in a single PKCS12 payload or do I have to have separate payloads for each certificate. Do I have to include the entire chain when deploying an S/MIME identity or can I just include the intermediate CA? Though trial and error, I've found that I have to include the root as well as the intermediate CAs, but maybe that's a bug. There are certain keys that I only found through trial and error that would have been good to have known. "PayloadCertificateFileName" for example is necessary if you want the user to see something more descriptive than: Enter the password for the certificate "(null)" when entering the password for a PKCS12 payload.
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!