This article has been created to assist users in creating certificates to use with the MAC agent; these certificates are specific to MAC agent deployments and should not be used with Windows agent deployments.
Creating Certificates with IIS
- Click Start and open Run.
- Enter inetmgr and click OK.
- Click on Server Certificates.
- Click Create Self-Signed Certificates.
- Enter a Name for the certificates.
- Select Personal as the certificate store.
- Click OK.
- Click to highlight the certificate within the Server Certificates list.
- Click Export.
- Select an Export Path and provide a file name within the Windows Explorer.
- Enter and confirm a desired password for the certificates.
- Click OK.
- The exported .pfx will be stored in the provided export path.
Configuring the exported .PFX in the Web Service Configuration File
The keys required for configuration must be edited as shown below. They are located in the ADGWeblabSelfHost.exe.config file located in C:\Program Files\AccessData\Forensic Tools\[version]\bin.
- Navigate to <Drive:>\Program Files\AccessData\Forensic Tools\7.5\bin.
- Open ADGWeblabSelfHost.exe.config in a text editor.
- Locate the following configuration keys
<add key="agentCertificateFileName" value="testmac.pfx" />
<add key="agentCertificatePassword" value="****" />
- Enter the .PFX file name.
- Enter the .PFX password. This password will be encrypted within the configuration file automatically.
- Save the ADGWeblabSelfHost.exe.config file.
- Restart the Exterro Self Host Service.
Creating a Public Certificate for the MAC Agent
- Click Start and open Run.
- Enter mmc and click OK.
- Click File > Add/Remove Snap In.
- Select Certificates and click Add.
- Select Computer Account.
- Click Next.
- Select Local Computer if MMC is open on the application server. Alternatively select the computer manually.
- Click Finish.
- Select Certificates within the Console Root Pane.
- Select Personal and locate the created certificate.
- Right-click on the certificate and select All Tasks > Export.
- Click Next.
- Select No, do not export the private key.
- Click Next.
- Select DER encoded binary X.509 (.CER).
- Click Next.
- Select an Export Path and use client.cer as the file name within the Windows Explorer. Users must use client.cer as the file name.
- Click Next.
- Click Finish.
Replacing the default client.cer on the MAC Agent
- On the macOS machine, open a Terminal window and run the following command to stop the Agent:
sudo launchctl unload /Library/LaunchDaemons/com.adg.managedagent.plist
- Navigate to /Library/AccessDataAgent/[version]/
- Replace the existing client.cer with the newly exported client.cer.
- Open a Terminal window and run the following command to start the Agent:
sudo launchctl load /Library/LaunchDaemons/com.adg.managedagent.plist
Information regarding the installation of the MAC agent can be found here.