. . . . . . . . . . . . . . . . . "ODSGenerateWebIDX509CertOSKeystoreSafari" . . . . . "2017-06-29T07:29:42.066477"^^ . . . . . . . . "%META:TOPICPARENT{name=\"ODSGenerateWebIDX509CertOSKeystore\"}%\n\n---+Generate an X.509 Certificate (with a WebID watermark) that's managed by host operating system keystore: Safari (on Mac OS X Only)\n\n\n 1 [[ODSSetupSSL][Set up an X.509 certificate issuer and HTTPS listener]].\n 1 [[ODSX509GenerateIESetService][Set up X.509 Certificate Service]].\n 1 Go to the ODS home page (local or remote) and register new user (or log in as existing ODS user):\n%BR%%BR%%BR%%BR%\n 1 Post registration you end up with an ODS generated Person Entity Identifier (an HTTP URI that Identifies \"You\") that takes the form: \n\nhttp://cname/dataspace/person/user-name#this\n\n%BR%%BR%%BR%%BR%\n 1 Edit your profile (Note: If this step is skipped, the resulting X.509 certificate will not have a human readable name):\n%BR%%BR%%BR%%BR%\n 1 Go to Profile Edit -> \"Security\":\n%BR%%BR%%BR%%BR%\n 1 Go to \"Certificate Generator\":\n%BR%%BR%%BR%%BR%\n 1 Complete the certificate details for the user: \n%BR%%BR%%BR%%BR%\n 1 Click \"Submit Certificate Request\" to generate the certificate. \n 1 The Mac OS X key chain is automatically loaded with the new certificate loaded:\n%BR%%BR%%BR%%BR%\n 1 The certificate is \"untrusted\" in the key chain by default and needs to be set to trusted by.\n 1 Specify Certificate details:\n%BR%%BR%%BR%%BR%\n 1 Right Click on the certificate name and select the \"Get Info\" item:\n%BR%%BR%%BR%%BR%\n 1 Expand the tree of the \"Trust\" item on the left:\n%BR%%BR%%BR%%BR%\n 1 Set the \"when using this certificate\" drop down to \"Always trust\":\n%BR%%BR%%BR%%BR%\n 1 Enter the password for the user account to authorize the trust change in the key chain:\n%BR%%BR%%BR%%BR%\n 1 Right click on the certificate again and select the \"New Identity Preference\" to the secure HTTP address of the ODS server for ex. [[https://id.myopenlink.net/ods][https://id.myopenlink.net/ods]] and click \"Add\":\n%BR%%BR%%BR%%BR%\n 1 Go to the \"X.509 Certificates\" tab of the ODS user account and click on the \"Edit\" button of the generated certificate:\n%BR%%BR%%BR%%BR%\n 1 Select the \"Enable Automatic WebID Login\" checkbox and click \"Save Certificate\" to enable WebID access of this user:\n%BR%%BR%%BR%%BR%\n 1 Log out and access for ex.: [[https://id.myopenlink.net/ods][https://id.myopenlink.net/ods]].\n 1 Select when prompted from your browser, the certificate generated from above.\n 1 The WebID login for the selected user certificate will be presented to enable secure login:\n%BR%%BR%%BR%%BR%\n 1 [[ODSBriefcaseWebIDPerson][Perform an WebID based ACL Sharing of a resource]] to the user with the generated from above X.509 hosted WebID.\n\nNote: these steps apply to any ODS instance.\n\n\n---++Related\n\n * [[ODSGenerateWebIDX509CertOSKeystore][Generate an X.509 Certificate (with a WebID watermark) that's managed by host operating system keystore]]\n * [[ODSGenerateWebIDX509CertOSKeystoreChrome][Chrome]] \n * [[ODSGenerateWebIDX509CertOSKeystoreIE][IE]] \n * [[ODSGenerateWebIDX509CertOSKeystoreFFNETExt][Firefox]] \n * [[ODSGenerateX509Certificate][Guide of generating X.509 Certificates via ODS]]\n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSPARQLEndpointProtection][Safeguarding your Virtuoso-hosted SPARQL Endpoint]]\n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtTipsAndTricksGuideSPARQLEndpointProtection][SPARQL Endpoint Protection Methods Collection]]\n * [[http://docs.openlinksw.com/virtuoso/][Virtuoso documentation]]\n * [[http://docs.openlinksw.com/virtuoso/rdfsparql.html#rdfsupportedprotocolendpoint][SPARQL Service Endpoint]] \n * [[http://docs.openlinksw.com/virtuoso/rdfsparql.html#rdfsupportedprotocolendpointuri][Service Endpoint Security]] \n * [[http://docs.openlinksw.com/virtuoso/rdfsparql.html#sparqwebservicetbl][Managing a SPARQL Web Service Endpoint]] \n * [[http://docs.openlinksw.com/virtuoso/rdfsparql.html][SPARQL]]\n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtTipsAndTricksGuide][Virtuoso Tips and Tricks Collection]]\n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSPARQLDET][SPARQL Endpoint DET Configuration Guide]] \n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSPARQLSecurityWebID][WebID Protocol & SPARQL Endpoint ACLs Tutorial]]\n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtOAuthSPARQL][SPARQL OAuth Tutorial]]\n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtTipsAndTricksGuideSPARQLEndpoints][Securing SPARQL endpoints]]\n * [[OdsSPARQLAuth][SPARUL over SPARQL using the http://cname:port/sparql-auth endpoint]]\n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtAuthServerUI][Virtuoso Authentication Server UI]]\n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSPARQLSSL][Manage a SPARQL-WebID based Endpoint]]\n * [[VirtODSSecurityWebID][WebID Protocol Support in OpenLink Data Spaces]].\n * Manage ODS Datadspaces Objects WebID Access Control Lists (ACLs):\n * [[ODSBriefcaseWebID][ODS Briefcase WebID based ACL Guide]]\n * [[ODSBriefcaseWebIDPerson][Person Entity WebID based ACL Guide]]\n * [[ODSBriefcaseWebIDGroup][Group Entity WebID based ACL Guide]]\n * [[ODSBriefcaseWebIDPublic][Public WebID based ACL Guide]] \n * [[ODSFeedManagerWebIDACL][ODS Feed Manager WebID based ACL Guide]]\n * [[ODSFeedManagerWebIDACLPerson][Person Entity Specific ACL]]\n * [[ODSFeedManagerWebIDACLGroup][Group Entity Specific ACL]]\n * [[ODSFeedManagerWebIDACLPublic][Public Specific ACL for anyone with a WebID]]\n * [[ODSCalendarWebIDACL][ODS Calendar WebID based ACL Guide]]\n * [[ODSCalendarWebIDACLPerson][Person Entity Specific ACL]]\n * [[ODSCalendarWebIDACLGroup][Group Entity Specific ACL]]\n * [[ODSCalendarWebIDACLPublic][Public Specific ACL for anyone with a WebID]]\n * [[ODSBookmarksWebIDACL][ODS Bookmark Manager WebID based ACL Guide]]\n * [[ODSBookmarksWebIDACLPerson][Person Entity Specific ACL]]\n * [[ODSBookmarksWebIDACLGroup][Group Entity Specific ACL]]\n * [[ODSBookmarksWebIDACLPublic][Public Specific ACL for anyone with a WebID]]\n * [[ODSAddressBookWebIDACL][ODS Addressbook WebID based ACL Guide]]\n * [[ODSAddressBookWebIDACLPerson][Person Entity Specific ACL]]\n * [[ODSAddressBookWebIDACLGroup][Group Entity Specific ACL]]\n * [[ODSAddressBookWebIDACLPublic][Public Specific ACL for anyone with a WebID]]\n * [[ODSPkiSetup][Guide for Set up a X.509 certificate issuer and HTTPS listener and generate ODS user certificates]]\n * [[ODSSetupSSL][Configure Virtuoso+ODS instance as an X.509 Certificate Authority and HTTPS listener]] \n * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSetupSSL][Configure Virtuoso instance as an X.509 Certificate Authority and HTTPS listener]]\n * [[VirtODSPubSubHub][Setting up PubSubHub in ODS]]\n * [[VirtPubSubHub][PubSubHubBub Demo Client Example]]\n * [[VirtFeedPubSubHub][Feed subscription via PubSubHub protocol Example ]]\n * [[VirtPubSubHubACL][Setting Up PubSubHub to use WebID Protocol or IP based control lists]]\n * [[OdsKeyImport][CA Keys Import using Conductor]]\n * [[ODSGenerateWebIDX509CertBrsKeystore][Generate an X.509 Certificate (with a WebID watermark) to be managed by a browser-based keystore]]\n * [[ODSWebIDIdP][Using Virtuoso's WebID Verification Proxy Service with a WebID-bearing X.509 certificate]]\n * [[ODSWebIDIdpProxy][Using Virtuoso's WebID Identity Provider (IdP) Proxy Service with an X.509 certificate]]\n * [[ODSBriefcaseWebIDShareFile][ODS Briefcase WebID Protocol Share File Guide]]\n * [[http://esw.w3.org/topic/foaf+ssl][WebID Protocol Specification]]\n * [[https://foaf.me/simpleLogin.php][Test WebID Protocol Certificate page]]\n * [[http://test.foafssl.org/cert/][WebID Protocol Certificate Generation page]]" . . . . . . . . . "2017-06-13T06:01:26Z" . . . . . . "d75b0b7c6f5ade156c3925dbfce60049" . . "2017-06-13T06:01:26.843306"^^ . . . . . . . . . . . . . . . "2017-06-29T07:29:42Z" . . . "ODSGenerateWebIDX509CertOSKeystoreSafari" . . . . . . . . . . . . . . . "ODSGenerateWebIDX509CertOSKeystoreSafari" . . .