• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: [Fed-Talk] CAC Public Key Server
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fed-Talk] CAC Public Key Server

  • Subject: Re: [Fed-Talk] CAC Public Key Server
  • From: Michael Kluskens <email@hidden>
  • Date: Thu, 17 Nov 2005 09:01:55 -0500

On Nov 16, 2005, at 9:47 PM, Timothy J Miller wrote:

In Tiger, Address Book should find certs in LDAP records.

There's also the Global Directory Service (GDS) at dod411.chamb.disa.mil. The base DN would be ou=dod,o=u.s. government,c=us.

Is there any way to check if you got the LDAP in Address Book setup right? There does not seem to be any diagnostic information to let you know when it is right--it's like the black light lighting up on the black board.

The default is port 389 and no SSL.

It seems that leaving the default I got access to the GDS LDAP, I searched for myself in the Address Book after selecting Directories and I found an entry which has my name in upper case and my email address and nothing else, do the public keys get loaded into the keychain when you do this.

I found the major disadvantage of setting up access to the GDS in the address book, in Mail address completion takes a long time and it searches the GDS. So either you disable LDAP or you disable address completion.

On Nov 16, 2005, at 9:47 PM, Timothy J Miller wrote:
I suggest using an LDAP browser to locate the sub-trees you need and adding those search bases to Address Book as LDAP entries.

What LDAP browser is available for OS X and would be able to find these sub-trees?

I tried to setup access to the local base LDAP server a while ago using very detailed information and I don't think it works, looking at the entry I used it must have required SSL and a different port number. The lack of diagnostic information makes it hard to trouble shoot so I just gave up.

Address Book is one application that new users do NOT discover. I get questions from new users saying that Mail does not have an address book or similar, obviously there is an user interface design failure here. That you can't open Address Book from Mail's menus is the only obvious thing to me but then my area of expertise is not user interface design.

Michael

_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden




  • Follow-Ups:

      

    • Re: [Fed-Talk] CAC Public Key Server

      • From: Dave Hale <email@hidden>
      • 





References: 


 >RE: More CAC issues [was- [Fed-Talk] PKINIT and Kerberos (From: "Monahan, Jim (Contractor)" <email@hidden>)


 >Re: More CAC issues [was- [Fed-Talk] PKINIT and Kerberos (From: "Timothy J. Miller" <email@hidden>)


 >Re: More CAC issues [was- [Fed-Talk] PKINIT and Kerberos (From: Dalton Hamilton <email@hidden>)


 >[Fed-Talk] CAC Public Key Server (From: Billy Lenox <email@hidden>)


 >Re: [Fed-Talk] CAC Public Key Server (From: Timothy J Miller <email@hidden>)






    

  • Prev by Date:
Re: [Fed-Talk] CAC Public Key Server

    • 

  • Next by Date:
Re: [Fed-Talk] TV Shows in the Internet

    • 

  • Previous by thread:
Re: [Fed-Talk] CAC Public Key Server

    • 

  • Next by thread:
Re: [Fed-Talk] CAC Public Key Server

    • 

  • Index(es):

      

    • Date
      • 

    • Thread
      • 

    

    •