Re: [Fed-Talk] CAC Public Key Server
Re: [Fed-Talk] CAC Public Key Server
- Subject: Re: [Fed-Talk] CAC Public Key Server
- From: Timothy J Miller <email@hidden>
- Date: Wed, 16 Nov 2005 20:47:04 -0600
On Nov 16, 2005, at 2:30 PM, Billy Lenox wrote:
Is there a LDAP service that can pointed to to get the PUBLIC KEY
from the us.army.mil CAC. If so where would that be located at on
the Army Network so we can point our Macintosh's to that server to
get the KEY to Encrypt Mail.
Certs should be published to your organization's Exchange GAL,
assuming you can connect to it. In Exchange 2000 and above, the GAL
is the same as the domain's global catalog, so you should be able to
point at a GC server and get what you need. I can't recall the port
offhand but you can find the SRV record in DNS, usually at
gc._msdcs.your.domain.name.
In Tiger, Address Book should find certs in LDAP records.
There's also the Global Directory Service (GDS) at
dod411.chamb.disa.mil. The base DN would be ou=dod,o=u.s.
government,c=us. This should have all DoD members, so it can be a
bit difficult to use. I suggest using an LDAP browser to locate the
sub-trees you need and adding those search bases to Address Book as
LDAP entries.
IIRC, GDS is .mil-restricted. No, that doesn't make any sense to me
either.
-- Tim
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden