Add "Always Trust" Certificates to macOS System Keychain to avoid end-user misconfiguring certificate trust settings when prompted by macOS.
The "/usr/bin/security" tool used in this script now requires a user's password to be entered via a GUI prompt on macOS Big Sur, eliminating the possibility of unattended remote deployment of an "Always Trust" certificate. Please deploy any future certificates using the "Certificates" payload via MDM.
- Download macOS - Add -Always Trust- Certificates to System Keychain.fileset.zip
- Unzip and import downloaded Fileset into FileWave Admin.
Add all desired certificates (DER and PEM formats only) to the "/usr/local/etc/certs/" directory within Fileset Contents.