Trusting '' certification authority

At we created a certificate authority to sign our own server certificates. To benefit from it you need to make sure that your PC/MAC are set to recognize such CA so the certificates it signed are trusted.

Below MAC and PC instructions.

MAC Instructions


Firefox is using its own CA repository.
To add new entry just select following item and when a popup appear give it trust
  • ca-chain.cert.pem,

  • Example:


    Chrome on macOS rely on macOS's keychain system, specifically in the "Keychain Access -> System" section.

    Please download the certificate:
  • ca-chain.cert.pem,

  • and type following commands:
      sudo security add-trusted-cert -d -r trustRoot -k "/Library/Keychains/System.keychain" ca-chain.cert.pem

    Now we have to tell macOS that the newly imported certficate is trusted. To do that we launch the "keychain Access" application, we select the System and unlock it: Once the lock is unlocked we can double click the MIC certificate: Now both Chrome and macOS trust certificates generated by MIC.

    PC Instructions

    On a PC please download locally following two certificates:
  • ca-chain.cert.pem,
  • and type following commands:
  • open the management console (execute mmc.exe)
  • select: File -> Add/Remove Snap-in
  • double click "Certificates" and select "Computer account", then "next", then "Finish"
  • press "Ok"
  • now expand following tree "Certificas (Local Computer)/Trusted Root Certification Authorities/Certificates"
  • right click "Certificates" and select "All Tasks->Import" and load the provided certificate
  • repeat the procedure for both the certificates (1024bits, 2048bits)