RE: [Fed-Talk] GEMPLUS 64K CAC with Firefox? (UNCLASSIFIED)
RE: [Fed-Talk] GEMPLUS 64K CAC with Firefox? (UNCLASSIFIED)
- Subject: RE: [Fed-Talk] GEMPLUS 64K CAC with Firefox? (UNCLASSIFIED)
- From: "Yokel-Contractor, Grant" <email@hidden>
- Date: Fri, 30 Mar 2007 10:52:13 -0400
- Thread-topic: [Fed-Talk] GEMPLUS 64K CAC with Firefox? (UNCLASSIFIED)
Classification: UNCLASSIFIED
Caveats: NONE
Tim,
Thank you for the quick instructions. I had actually attempted to resolve
this situation with the pcsctool command previously, (after searching the
archives), to no success. However, I realized I was using an individual's
card that had not been with our organization very long, thus had not
published his cert's to the GAL, AD, etc. Obvious oversight but at least it
was caught rather quickly without causing too much pain! But it's up and
working with a valid GEMPLUS card now.
Shawn,
Thanks for the background on "Tokend" and PKCS#11. It helped me to
understand the foundation of the troubleshooting I was performing as well as
I'm sure provide knowledge for future issues.
Thanks all.
R/S
Grant Yokel
LAN Service Technician
PEO-STRI Tech Support Team
407.208.3055
-----Original Message-----
From: Timothy J. Miller [mailto:email@hidden]
Sent: Thursday, March 29, 2007 5:13 PM
To: Yokel-Contractor, Grant
Cc: email@hidden
Subject: Re: [Fed-Talk] GEMPLUS 64K CAC with Firefox? (UNCLASSIFIED)
Yokel-Contractor, Grant wrote:
> I have been testing CAC authentication with OWA on my MacBook Pro
> (10.4.9) for the past couple months now and have proved successful
> except with one card...You guessed it, the GEMPLUS 64k CAC. All other
cards I've tested (Oberthur, Axalto, Schlumberger) have worked flawlessly.
The GEMPLUS is recognized in Keychain Access, displays the cert's, and will
unlock if directed to do so.
> However when I pull up Firefox with DOD Configuration 0.6.1 and go
> into the Certificate Manager, the cert's won't pull up. If you put in
> any other CAC, your immediately prompted for your PIN upon clicking
> the "view certificates" tab, and the cert's will display, thus you
> know you will be prompted for a choice of what cert to use when you
> attempt OWA. When you attempt with a GEMPLUS on OWA, it immediately brings
you to a 401 error. I'm using a SCR331 flashed with 5.22 firmware. I've also
tried with Safari, Camino, and BonEcho. The first time I attempted to use a
GEMPLUS with Firefox I actually rendered the browser to a non-operational
state, forced to troubleshoot and eventually re-install. Has anyone seen any
success with a GEMPLUS 64K?
I have a GEMPLUS 64K card with no problems. Try this:
Put your card in the reader.
Open Terminal.
Run "sudo pcsctool"
Enter your password when prompted.
Select "commonAccessCard.bundle" from the list.
Then try FF again.
-- Tim
Classification: UNCLASSIFIED
Caveats: NONE
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden