I just received a new 64-bit CAC card with CA11 certificates on it. How
does one go about getting Keychains to recognize the certificates as
vaild. The system defaults at CA10 so it won’t recognize newer certs.
Does Apple have an update site for this?
CAs 11, 12, 13, and 14 (EMAIL and ID--that's a total of 8) are
brand-spanking-new and are signed under the new 2048-bit root CA. So
you'll need to install the new root in X509Anchors, and the new issuing
CAs in X509Certificates.
You can do this through the Keychain Access import dialog (double-click
on the .cer certificate file) by selecting the keychain as appropriate.
You *may* need to add these two system keychains to your keychain list
(apple-option-L in Keychain Access, and they're stored in
/System/Library/Keychains/).
Whether Apple keeps pace or not as new CAs come online I have no idea.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/fed-talk/email@hidden
This email sent to email@hidden
