/
(DC) [OS X] Export / Back Up Digital Certificates

(DC) [OS X] Export / Back Up Digital Certificates

Owned by Lindsay Walker
Last updated: Feb 17, 2025 by Greg Jewett
3 min read

Exporting from Keychain

When you export/download a digital certificate, you will receive both public and private keys. The public keys are the ones that you will use to sign and encrypt emails. The private keys are the ones that will be stored on your computer. You should never share the private key(s).

WARNING: If someone else has access to your private keys, they can impersonate you or read your encrypted emails.

Creating a backup copy

Your personal digital certificate will be stored in Stache.  You can however elect to store it elsewhere. There are several options:

  • Burn the contents to a CDROM

  • Copy the files to portable media such as a Flash drive

  • Copy the files to UTBox, which is approved for the storage of sensitive information.

Regardless of which medium you wish to store your certificate and private key, remember to secure the medium. 

Do not ask anyone else (such as desktop staff) to store or keep copies of your certificates.  This is a security risk and not approved by ISO.

WARNING: If someone else has access to your private keys, they can impersonate you or read your encrypted emails.

Instructions for macOS X 12.x (Monterey)

  1. In the Finder, open Utilities 


     

  2. Open Keychain Access.


    You will notice above the list of items, there are tabs for "All Items", "Passwords", .. "Keys" and "Certificates".

     

  3. Click the Keys Tab.  Locate your private key which will have the key icon and the name will have "@austin.utexas.edu".

  4. Right-click on the entry, and choose Export "_____@austin.utexas.edu"

  5. Choose "Personal Information Exchange (.p12) as the file format.  Name the file something the represents "private key".  

  6. Click "Save".

  7. You will be prompted to enter a password and confirm it.

  8. Click OK.

  9. Click the Certificates tab, and locating your certificate with your name as the title.

  10. Right-click on the entry, and choose Export "_____@austin.utexas.edu"

  11. Choose "Certificate (.cer)" as the file format.  Name the file something the represents "certificate".  

  12. Click "Save".

  13. You will now have two files (wherever you saved them) called "____.p12" and "____.cer".

Important

Be sure that you create a password that you will be able to remember at a later date or that you can store it in a separate location that is also secure. The password will be required to move the files to another computer or device or if you ever have to use the files to restore your certificates.

 

Instructions for macOS X 10.10 (aka Yosmite)

  1. In the Finder, open Utilities 

  2. Open Keychain Access.

  3. Select your signing and encryption certificates from the list of displayed keychain items.

  4. From the File menu, select Export.

  5. Enter the name of the file you are exporting and select the P12 format.

  6. Choose the location and filename destination where you want to export your certificate and click Next.

  7. When prompted, create a password for the certificate files.

Important

Be sure that you create a password that you will be able to remember at a later date or that you can store it in a separate location that is also secure. The password will be required to move the files to another computer or device or if you ever have to use the files to restore your certificates.

 

 

Table of Contents

 

Related content

Confluence Documentation | Web Privacy Policy | Web Accessibility