Generating certificate signing request in Keychain Access: which private key is used?

macos ssl-certificate keychain csr
16,059

Solution 1

It generates a new public/private keypair when you create a CSR in Keychain Access. The name of the key will be what you entered in the "Common Name" field when generating the CSR.

If you would like to generate a new CSR from an existing key, I do not believe this can be done entirely within Keychain Access. For how to do it with Keychain Access and OpenSSL, see How can I use an existing private key to a new iOS development certificate?

Solution 2

If you open the resulting certificate on your Mac, it will be added to your Keychain. When you unfold it, you'll the associated private key.

Share:
16,059
arnekolja
Author by

arnekolja

Updated on July 20, 2022

Comments

  • arnekolja
    arnekolja almost 2 years

    I am wondering which private key Keychain Access in Mac OS X (Snow Leopard, now Lion) uses. Whenever I create a CSR using that app, it does not even ask for a private key to use. So which one does it use then?

    I could imagine that it used the selected one, if you've selected one in your certificate list. But generating the request even works when nothing is selected at all or, making sure it's not an "invisible" selection, if the item that's selected is not a private key.

    Does anyone know?

    Thanks in advance

    Arne

  • arnekolja
    arnekolja over 12 years
    Hey, thanks for your answer. But - where can I find this automagically created keypair then? I can't seem to find it within my keychain.
  • jsherk
    jsherk about 12 years
    When you choose Request Certificate From Certificate Authority in Keychain Access, it will ask you for a Common Name ... it then appear in Keychain under this common name that you gave it.
  • Zut
    Zut almost 12 years
    When rightclicking a private key, you can choose "Request a Certificate from a Certificate Authority using <SELECTED KEY>", but it seems to me that, as stated in the answer, it still creates a new key for it.
  • Imran
    Imran over 9 years
    Hi Rop can you please tell me how to extract the private key of CSR in .p12 form.I needed this when I follow the MDM implementation link softhinker.com/in-the-news/iosmdmvendorcsrsigning in the first point of vendor.If there is something wrong then please suugest.
  • Rob Napier
    Rob Napier over 9 years
    After you create your CSR, look in "Keys" in Keychain Access. You'll find the public and private key there.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Keychain password for macOS Flutter app on VM
How to stop "keychain access" permission dialog on MacOS when debugging Flutter app on Visual Studio Code?
How to set up Java VM to use the root certificates (truststore) handled by Mac OS X
Update GitHub authentication to use token on macOS (rather than password)?
How to delete a keychain reference from command line
How to export certificate from Mac OS X to get pair of .cert and .key files ?
download untrusted certifcate in Chrome (Mac)
KeyChain Security command line tool works with find-internet-passwords but not find-generic-passwords
No code sign identities found: setting up jenkins
Apple keychain private/public key issue