OSX wants to make changes. Type an administrator's name and password... Won't go away

macos passwords administrator certificate keychain
55,497

from keychain, select your certification, change access control to "allow all applications to access this item"

enter image description here

Share:
55,497

Related videos on Youtube

Jake Wilson
Author by

Jake Wilson

Updated on September 18, 2022

Comments

  • Jake Wilson
    Jake Wilson over 1 year

    I recently needed to add some SSL certificates to my Mac (OSX 10.10.5) in order connect to a remote service. The certificates are needed for 2 factor authentication.

    I have full Admin rights in OSX. I am able to successfully add the certificates to the Keychain. I can go into the KeyChain app and set the certificate to Always Trust without issue.

    When I attempt to make the connection (using Cyberduck for WebDAV in this case), I am asked to choose the proper certificate, and then I get this window:

    enter image description here

    So I enter my Username and Password, which DOES have full Admin rights. I click Allow and the window pops back up again, asking me for my Username and Password again. It doesn't seem to do anything. No errors or anything like that. Clicking "Deny" obviously tells the system I'm rejecting the certificate and it won't let me connect.

    I can go directly into the KeyChain application and unlock and make all the changes I want, using my Username and Password (that has Admin rights). So why is this dialog not accepting my same Username and Password?

    UPDATE

    When putting in my Username and Password, and clicking "Allow" the system log reports:

    Apr 22 10:05:15 my-computer.local Cyberduck[1621]: [background-1] ERROR ch.cyberduck.core.ssl.CertificateStoreX509KeyManager - Keystore not loaded Get Key failed: pad block corrupted
Apr 22 10:05:16 my-computer.local com.apple.SecurityServer[87]: Problem opening rules file "/etc/authorization": No such file or directory

    After some investigation, it appears that the /etc/authorization file was removed in Mavericks (OSX 10.9). So what is going on here exactly? Why is it trying to find this file that the OS should know isn't used anymore?

    • Ramhound
      Ramhound about 8 years
      It sounds like the certificates were not added to the certificate store correctly. Your user obviously does not have permission to the System keychain, my suggestion, added the certificates to the user's keychain.
    • Jake Wilson
      Jake Wilson about 8 years
      I do have full access to the System Keychain. I can unlock it and make changes in the Keychain application.
    • D Schlachter
      D Schlachter about 8 years
      You might try looking at the system.log. I had an issue recently where a program was interfering with the Keychain (causing the prompts not to be trusted), and was getting appropriate error messages there.
    • Jake Wilson
      Jake Wilson about 8 years
      The system log I think has some helpful info in it. See updated answer.
  • Jake Wilson
    Jake Wilson about 8 years
    Where exactly do you bring up that Window in the Keychain Access application?
  • Nikko
    Nikko almost 7 years
    To answer Jake Wilson's question: double click on the certificate in the Keychain Access application.
  • Jake Toronto
    Jake Toronto about 6 years
    Here's an answer with a few more details: superuser.com/a/1306894/280734
  • auspicious99
    auspicious99 about 3 years
    Wow, first time I ever knew there was this possibility! And it works! Thanks!
  • Sinjai
    Sinjai about 3 years
    Double-click the associated key – double-clicking the certificate only brings up trust info.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Apple keychain private/public key issue
How to get OS X 10.9 to save WPA2 Enterprise passwords in System keychain?
Deleting the system keychain from Mac, specified keychain could not be found
HTTPS certificates invalid on Safari, Chrome on specific user account
Add to "My certificates" in Keychain Access? (Mac OS 10.10)
Keychain password for macOS Flutter app on VM
How to stop "keychain access" permission dialog on MacOS when debugging Flutter app on Visual Studio Code?
Update GitHub authentication to use token on macOS (rather than password)?
How to delete a keychain reference from command line
You already have a current iOS Development certificate or a pending certificate request