Skip to content

Instantly share code, notes, and snippets.

@dnedrow
Created June 19, 2026 20:47
Show Gist options
  • Select an option

  • Save dnedrow/542ea45a6232b5db54878fc09a82a15e to your computer and use it in GitHub Desktop.

Select an option

Save dnedrow/542ea45a6232b5db54878fc09a82a15e to your computer and use it in GitHub Desktop.
Installing a VPN root certificate in macOS running in a VM

The problem

When running a tool like Parallels on a Mac that is connected to a VPN with a custom certificate, the hosted macOS cannot, in many cases, connect to the outside world. This may manifest as a TLS error.

The Solution

Installing the VPNs certificate in the virtualized macOS system keychain.

The Steps (inside the macOS VM, assuming Zscaler certificate)

  1. Open Keychain Access
  2. Drag or import the Zscaler root certificate into the system keychain, not the login keychain
  3. Double click the imported cert
  4. Expand the Trust section
  5. Set the trust option to Always Trust
  6. Close Keychain Manager and authenticate when prompted

Terminal Access

sudo security add-trusted-cert -d -r trustRoot -k /Library/Keychains/System.keychain /path/to/zscaler.cer

Restart the virtual machine

Now, you should be able to access the network without TLS errors.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment