Re: [Fed-Talk] MS Mac Office 2008 and CAC-enabled WebMail
Re: [Fed-Talk] MS Mac Office 2008 and CAC-enabled WebMail
- Subject: Re: [Fed-Talk] MS Mac Office 2008 and CAC-enabled WebMail
- From: "Timothy J. Miller" <email@hidden>
- Date: Mon, 7 Jan 2008 08:22:30 -0600
On Jan 4, 2008, at 3:01 PM, Boyd Fletcher wrote:
that’s a real bummer. So we can’t use Entourage 2008 to access
DOD’s externally facing webmail servers that require CAC
authentication. I was hoping they used Apple’s TLS infrastructure
which supports CAC.
Should work fine in Safari. :)
CAC authN to OWA through Entourage uses Microsoft's RPC/HTTPS
protocol. However, the Windows RPC/HTTPS stack only supports NTLMv2
or Kerberos authN, not PKI authN (this continues to be true in Vista
and Server 2008, BTW). If you were to look at the RPC/HTTPS protocol
from an external Outlook client you'd see it using NTLMv2 cached
credentials. If you could get cached creds on OS X (Paul, does
ADmitMAC f/CAC support cached creds?) it should then work with
Entourage (assuming Entourage can wield cached creds on OS X).
This also presumes that the RPC/HTTPS connector is turned on in your
OWA implementation, which is not guaranteed.
-- Tim
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden