This article has been created to assist users in creating certificates to use with the MAC agent; these certificates are specific to MAC agent deployments and should not be used with Windows agent deployments. 

 

Creating Certificates with IIS

  1. Click Start and open Run.
  2. Enter inetmgr and click OK.

Graphical user interface

Description automatically generated with medium confidence


  1. Click on Server Certificates.
  2. Click Create Self-Signed Certificates.

Graphical user interface, text, application

Description automatically generated


  1. Enter a Name for the certificates.
  2. Select Personal as the certificate store. 
  3. Click OK.
  4. Click to highlight the certificate within the Server Certificates list.
  5. Click Export.

Graphical user interface, text, application, email

Description automatically generated


  1. Select an Export Path and provide a file name within the Windows Explorer.
  2. Enter and confirm a desired password for the certificates. 
  3. Click OK.
    • The exported .pfx will be stored in the provided export path. 

Configuring the exported .PFX in the Web Service Configuration File

The keys required for configuration must be edited as shown below. They are located in the ADGWeblabSelfHost.exe.config file located in C:\Program Files\AccessData\Forensic Tools\[version]\bin.

 

  1. Navigate to <Drive:>\Program Files\AccessData\Forensic Tools\7.5\bin.
  2. Open ADGWeblabSelfHost.exe.config in a text editor.
  3. Locate the following configuration keys
    <add key="agentCertificateFileName" value="testmac.pfx" />
    <add key="agentCertificatePassword" value="****" />
  4. Enter the .PFX file name.
  5. Enter the .PFX password. This password will be encrypted within the configuration file automatically.
  6. Save the ADGWeblabSelfHost.exe.config file.
  7. Restart the Exterro Self Host Service. 

Creating a Public Certificate for the MAC Agent

  1. Click Start and open Run.
  2. Enter mmc and click OK.

Graphical user interface

Description automatically generated


  1. Click File > Add/Remove Snap In.

Graphical user interface, application

Description automatically generated


  1. Select Certificates and click Add.

Graphical user interface

Description automatically generated


  1. Select Computer Account.
  2. Click Next.
  3. Select Local Computer if MMC is open on the application server. Alternatively select the computer manually.
  4. Click Finish.
  5. Select Certificates within the Console Root Pane.
  6. Select Personal and locate the created certificate.

Graphical user interface, text, application, email

Description automatically generated


  1. Right-click on the certificate and select All Tasks > Export.
  2. Click Next.
  3. Select No, do not export the private key.

Graphical user interface, text, application, email

Description automatically generated


  1. Click Next.
  2. Select DER encoded binary X.509 (.CER).
  3. Click Next.

Table

Description automatically generated with medium confidence


  1. Select an Export Path and use client.cer as the file name within the Windows Explorer. Users must use client.cer as the file name.

Graphical user interface, text, application, email

Description automatically generated


  1. Click Next.
  2. Click Finish.

Graphical user interface, text, application

Description automatically generated



Replacing the default client.cer on the MAC Agent

  1. On the macOS machine, open a Terminal window and run the following command to stop the Agent:
sudo launchctl unload /Library/LaunchDaemons/com.adg.managedagent.plist
  1. Navigate to /Library/AccessDataAgent/[version]/
  2. Replace the existing client.cer with the newly exported client.cer.
  3. Open a Terminal window and run the following command to start the Agent:
sudo launchctl load /Library/LaunchDaemons/com.adg.managedagent.plist

 

Information regarding the installation of the MAC agent can be found here.