Hi Guru,
This tool generate certificate signed by agent CA placed on NS.
Mac agent should have to know this CA in order to verify ssl connection, so you should import agent CA cert into mac caino.pem storage.
Agent CA certificate is located in trusted root certificates (you can use mmc -> add certificate snap in).
Then find certificate - it should be named like SMP 'hostname' Agent CA. Open this certificate and export it in base64 format without private keys.
Exported file will contain base64 string which should be placed into agent cert storage file (/opt/altiris/notification/nsagent/etc/cainfo.pem) - this can be accomplished using task - create unix script task like 'echo "base64 string of certificate" >> /opt/altiris/notification/nsagent/etc/cainfo.pem" and launch such task on your mac machines. After that mac agent should be able to verify certificate using CA cert you have placed.
Thanks,
AndreiF