To import a self-signed certificate on a Mac host, you export the certificate from your Horizon FLEX server and import it to the Mac.

Become familiar with how to install and use the MMC Certificates snap-in on a Windows system. For more information, go to the Windows TechNet Web site at http://technet.microsoft.com.

Become familiar with how to use Keychain Access on a Mac. For more information, go to the Apple Support Web site at http://support.apple.com.

Install Windows IIS.

1

Export the self-signed certificate from your Horizon FLEX server.

a

On the Horizon FLEX server, start MMC (mmc.exe), add the Certificates snap-in for a computer account, and manage certificates for the local computer.

b

Select File > Add/Remove Snap-in.

c

Click the Certificates snap-in and click Add.

d

On the Certificates snap-in display, select Computer account and click Next.

This setting is required by the Horizon FLEX server.

e

Select Local Computer and click Finish and then OK.

f

In the left navigation pane, expand Certificates (Local Computer).

g

Right-click on Trusted Root Certification Authorities and select All Tasks > Import.

The Certificate Import Wizard opens.

h

Click Next.

i

Browse for the root certificate file and click Next.

j

Select Place all certificates in the following store: Trusted Root Certification Authorities and click Next, then click Finish.

k

Navigate to Trusted Root Certification Authorities > Certificates.

l

Select and export the self-signed certificate.

Export the certificate in DER-encoded binary X.509 (.CER) format.

2

Copy the self-signed certificate to the Mac.

3

Import the self-signed certificate on the Mac.

a

Double-click the self-signed certificate to open it in Keychain Access.

The self-signed certificate appears in login.

b

Copy the self-signed certificate to System.

You must copy the certificate to System to ensure that it is trusted by all users and local system processes, including the virtual machine (vmware-vmx) processes in Fusion Pro.

c

Open the self-signed certificate in System, expand Trust, select Use System Default, and save your changes.

d

Reopen the self-signed certificate in System, expand Trust, select Always Trust, and save your changes.

e

Delete the self-signed certificate from login.

The self-signed certificate is now trusted for all users.