Re: [Fed-Talk] CAC Login to OWA
Re: [Fed-Talk] CAC Login to OWA
- Subject: Re: [Fed-Talk] CAC Login to OWA
- From: "Timothy J. Miller" <email@hidden>
- Date: Tue, 06 Feb 2007 12:46:38 -0600
Mike Jackson wrote:
I tried Firefox 2.0.0.1 and that didn't work.
Pull 1.5.0.8/9 from the Mozilla archive.
Sometimes Safari will ask me for my PIN for the CAC and I enter it, but
then I get the HTML error page from the AFMC webmail site stating that I
didn't authenticate properly.
That's the issue you read about that Paul's hackaround tries to fix.
Paul'll have to chime in further.
What I did notice is that the AFMC certificate has "CA 14" in it, and
the certs that are supplied in OS X only go up to CA 10? Is this a
problem?
Probably at least in part.
How can I get the CA 14 cert onto my OS X machine?
You can download DoD Root CA 2 chains from the AF PKI SPO website.
https://afpki.lackland.af.mil/html/trustingthedodpki.asp#NonWindows
The site is .mil restricted and CAC required, so you'll have to do this
from an AFMC workstation.
Make sure you install the DoD Root CA 2 cert into X509 Anchors, *not*
your login keychain.
I also understand the basic concepts of the Keychain and the CAC card
but do I need to copy my certs from the CAC card to the keychain?
No.
All I want to do is authenticate to the webmail site. I do NOT need the
CAC card for anything else on the machine.
But they're so useful! Seriously. CAC login to local accounts on your
Mac is pretty sweet.
-- Tim
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden