1Jan

How To Deploy Client Certificate For Mac

1 Jan 2000admin
How To Deploy Client Certificate For Mac 3,4/5 3251 votes

If your mappings include Web service authentication through HTTPS client certificates, follow these steps to deploy such mappings to a macOS running. IT: How To Create a Self Signed Security (SSL) Certificate and Deploy it to Client Machines Jason Faulkner Updated July 12, 2017, 3:45pm EDT Developers and IT administrators have, no doubt, the need the deploy some website through HTTPS using an SSL certificate.

Representative Console Installation with Apple Remote Desktop

  1. From your Secure Remote Access Appliance's /login interface, go to the My Account page.
  2. In the BeyondTrustRepresentative Console section, select Mac OS速 X as your platform and click Download BeyondTrustRepresentative Console. Save the installer package to a location that you can access from Apple Remote Desktop.

The following steps outline how to convert the bomgar-rep-installer.dmg file into a .pkg file.

  1. Copy the code under Code for wrap_rep_installer.sh. Paste it into a text editor and save it with the file name wrap_rep_installer.sh. You must save this file to the same location where you saved the installer package.
  2. Copy the code under Code for rep.plist. Paste it into a text editor and save it as rep.plist. You must save this file to the same location where you saved the installer package and the wrap_rep_installer.sh file.
    1. In rep.plist, locate <key>RootRelativeBundlePath</key> and change its value to match your BeyondTrust support site hostname. Be sure to leave the .app file extension.
    2. Example: <string>BeyondTrustRepresentative Console - support.example.com.app</string>
    3. Save rep.plist.
  3. You should now have three files saved to the same location:
    • bomgar-rep-installer.dmg
    • wrap_rep_installer.sh
    • rep.plist
  4. From a Terminal window, run the following command, replacing <path/to/bomgar-rep-installer.dmg> with the correct path:
    • ./wrap_rep_installer.sh <path/to/bomgar-rep-installer.dmg>
  5. This will output a .pkg file with the same name as the .dmg (bomgar-rep-installer.pkg).

The rest of these steps occur in Apple Remote Desktop.

Fixed: potential crash when changing pad audio propertyBecause you want to be the best VJs, you deserve the best Mac apps. Live video mixer for mac. This is why we keep updating ours for you to have an amazing live experience.The version makes Remixvideo run smoothly on newer macOS (as High Sierra and Mojave) and few other fixes and improvements.Keep sending us emails at support@mixvibes.com, your feedbacks are important to us!

  1. Select a computer list in the Remote Desktop window.
  2. Select one or more computers in the selected computer list.
  3. Select Manage > Install Packages.
  4. Add the bomgar-rep-installer.pkg file to the package list window.
  5. You can set all other options to your specifications.
  6. Click Install. (Alternatively, you can save or schedule this installation.)
  7. The BeyondTrustrepresentative console silently installs. Your users can now log into and run the representative console.

Code for wrap_rep_installer.sh

  • #!/bin/bash
  • function realpath
  • {
  • local path=${1:-.}
  • if [[ -d '$path' ]]; then
  • (cd '$path' && pwd)
  • elif [[ -f '$path' ]]; then
  • echo $(cd '$(dirname '$path')' && pwd)/$(basename '$path')
  • else
  • echo '$FUNCNAME: $0 -- path not found: $path' >&2
  • return 1
  • fi
  • }
  • if [[ $# -ne 1 ]]; then
  • cat << EOF
  • Usage: $0 <path/to/rep-installer.dmg>
  • EOF
  • exit 1
  • fi
  • dmgPath=`realpath $1`
  • shift 1
  • if [[ -f $dmgPath ]];
  • then
  • echo 'Packaging $dmgPath.'
  • else
  • echo '$dmgPath must exist and and be a disk image.'
  • exit 1
  • fi
  • mountPoint='/Volumes/bomgar-rep-$$'
  • hdiutil attach -nobrowse -noverify -mountpoint $mountPoint $dmgPath
  • appBundle=`find '$mountPoint' -maxdepth 1 -regex '.*(app)$'`
  • echo 'Found: $appBundle'
  • workDir=work$$
  • if [[ -d $appBundle ]];
  • then
  • mkdir work$$
  • cp -R '$appBundle' '$workDir'
  • else
  • echo 'Error copying $appBundle out of disk image'
  • hdiutil eject $mountPoint
  • exit 1
  • fi
  • outputBaseName=`basename '$dmgPath'`
  • outputBaseName='${outputBaseName%.*}'
  • if [[ -f foo.pkg ]]; then rm -f foo.pkg; fi
  • pkgbuild
  • --root `realpath $workDir`
  • --component-plist rep.plist
  • --install-location /Applications
  • '$outputBaseName.pkg'
  • rm -rf $workDir
  • hdiutil eject $mountPoint

Code for rep.plist

  • <?xml version='1.0' encoding='UTF-8'?>
  • <!DOCTYPE plist PUBLIC '-//Apple//DTD PLIST 1.0//EN' 'http://www.apple.com/DTDs/PropertyList-1.0.dtd'>
  • <plist version='1.0'>
    • <array>
      • <dict>
        • <key>RootRelativeBundlePath</key>
        • <string>BeyondTrustRepresentative Console - support.example.com.app</string>
        • <key>BundleHasStrictIdentifier</key>
        • <true/>
        • <key>BundleIsRelocatable</key>
        • <false/>
        • <key>BundleIsVersionChecked</key>
        • <false/>
        • <key>BundleOverwriteAction</key>
        • <string>upgrade</string>
      • </dict>
    • </array>
  • </plist>

Jump Client Installation with Apple Remote Desktop

  1. From your Secure Remote Access Appliance's /login interface, go to the Jump > Jump Clients page.
  2. In the Jump Client Mass Deployment Wizard, be sure to check the option Attempt an Elevated Install if the Client Supports It. It is also recommended to check Start Customer Client Minimized When Session Is Started for a truly silent install. You can set all other options to your specifications. Click Create.
  3. Select Mac OS速 X (Intel速) as your platform and click Download/Install. Save the installer package to a location that you can access from Apple Remote Desktop.

The following steps occur in Automator.

  1. In Automator, create a workflow. This workflow will contain three actions.
    • Get Specified Finder Items
      1. In this action, add the Jump Client installer package (bomgar-scc-{uid}.dmg).
    • Copy Items to Computers
      1. This action is available only if you have Apple Remote Desktop installed. It determines which computers you are allowed to install to.
      2. Click Update to show all of the computers you can manage.
      3. Check the computers to which you wish to deploy the BeyondTrust Jump Client.
      4. Set Destination to Other, and specify /var/root.

        You can specify another location if necessary, as long as the script in the next action is able to find this location on all remote systems.

      5. You can set all other options to your specifications.
    • Execute New UNIX Task
      1. Create a name for this task.
      2. In the text area, paste the following script, replacing {uid} with the unique identifier in the Jump Client installer file name:
        • #!/bin/bash
        • hdiutil attach -mountpoint /Volumes/foobar /var/root/bomgar-scc-{uid}.dmg
        • '/Volumes/foobar/Double-Click To Start Support Session.app/Contents/MacOS/sdcust'
      3. If you have allowed override of any Jump Client fields, you can append the desired command line parameters to the end of the script above. Example:
        • '/Volumes/foobar/Double-Click To Start Support Session.app/Contents/MacOS/sdcust --jc-jump-group jumpgroup:<jumpgroup-code-name> --jc-public-site-address support.example.com --jc-session-policy-present <session_policy_code_name> .. other desired parameters'
      4. Enter root as the user name.
  2. Save the workflow and click the Run button.
  3. While the Jump Client is installing, a splash screen will appear on the remote systems, and a BeyondTrust icon will briefly appear in the dock. If you did not check Start Customer Client Minimized When Session Is Started, then the customer client will momentarily appear as the Jump Client makes its first connection; it will then disappear.
  4. The Jump Client is now installed and appears in the menu bar.
  5. After a short interval, refresh the Jump Client interface in the representative console to see the Jump Client. As with all Jump Clients, you must have permission to access this Jump Client to see it in your list.

To install an internal root CA certificate on a Mac host, you export the certificate from your Horizon FLEX server and import it to the Mac.

Become familiar with how to install and use the MMC Certificates snap-in on a Windows system. For more information, go to the Windows TechNet Web site at http://technet.microsoft.com.

Become familiar with how to use Keychain Access on a Mac. For more information, go to the Apple Support Web site at http://support.apple.com.

Export the root CA certificate from your Horizon FLEX server.

a

On the Horizon FLEX server, start MMC (mmc.exe), add the Certificates snap-in for a computer account, and manage certificates for the local computer.

Navigate to Trusted Root Certification Authorities > Certificates.

c

Select and export the root CA certificate.

Export the certificate in DER-encoded binary X.509 (.CER) format.

Copy the root CA certificate to the Mac.

3

Import the root CA certificate on the Mac.

Double-click the root CA certificate to open it in Keychain Access.

The root CA certificate appears in login.

b

Copy the root CA certificate to System.

You must copy the certificate to System to ensure that it is trusted by all users and local system processes, including the virtual machine (.vmx) processes in Fusion.

Open the root CA certificate, expand Trust, select Use System Defaults, and save your changes.

d

Reopen the root CA certificate, expand Trust, select Always Trust, and save your changes.

Delete the root CA certificate from login.