Self-Signed Certificate in Certificate Chain


A firewall returns the following error for an executed backup plan: SSL certificate problem: self-signed certificate in certificate chain.


The certificate is self-signed, so it is non-trusted by default.


Add Certificate Contents to .cacerts.pem File Manually

To add contents of the certificate that produced such error, proceed as follows:

  1. Convert your .cer certificate file to .pem certificate. To do this, use the following command in terminal emulator: openssl x509 -in certname.cer -inform DER -out certname.pem -outform PEM
  2. Open the new file (certname.pem) in any text editor.
  3. Copy the contents of the file.
  4. Navigate to /Applications/
  5. Find the .cacerts.pem to edit it in a text editor.
  6. Scroll to the end of the .cacerts.pem file, and paste the certificate contents of the certname.pem file.
  7. Save the .cacerts.pem file.