[Composer] System Keychain

[Ernst, Craig S.]

I would look at using an At Reboot script with the security command and make sure your cert is a package installed at imaging. This is how I do our cert.

My script looks like:

/usr/bin/security add-trusted-cert -d -r trustRoot -k "/Library/Keychains/System.keychain" "/Library/Whatever/my.cer"

Seems to be working correctly for me in 10.5

Craig Ernst
Systems Management and Configuration
+-------------------+
University of Wisconsin-Eau Claire
Learning and Technology Services
105 Garfield Ave
Eau Claire, WI 54701
Phone: (715) 836-3639
Fax: (715) 836-6001
+-------------------+
ernstcs at uwec.edu
________________________________________
From: composer-bounces at list.jamfsoftware.com [composer-bounces at list.jamfsoftware.com] On Behalf Of Russell, Steven S. [SSRUSSELL at capousd.org]
Sent: Tuesday, June 30, 2009 12:07 PM
To: Alan Benedict; composer at list.jamfsoftware.com
Subject: Re: [Composer] System Keychain

Have you tried using Composer 6 instead of Composer 7? Is this a tiger base image?

Steven Russell
RADAR TSS I
(949) 234-5500
ssrussell at capousd.org

From: composer-bounces at list.jamfsoftware.com [mailto:composer-bounces at list.jamfsoftware.com] On Behalf Of Alan Benedict
Sent: Tuesday, June 30, 2009 8:37 AM
To: composer at list.jamfsoftware.com
Subject: [Composer] System Keychain

Does anyone have any suggestions on keeping the System Keychain intact when creating an OS image from composer?  We have added our intermediate certificate to it and when we create the OS image, it clears out the system keychain.  Should I just copy it from the original and put it back into the /Library/Keychains/?  Otherwise, is there any advice to adding these certificates at image time and making sure they are always trusted?

--
Alan Benedict

Macintosh Technician
The Integer Group
O: 515-247-2738
C: 515-770-8234
http://www.integer.com