Unfortunately, there seems to be a problem with participants
of this list operating at the extremes of competence on the OS X system
administration. I’ve owned a Mac for nearly 3 months, so I’m
obviously at the bottom end.
Since I didn’t try to use the CAC until June, I
started with 10.5.3, so 10.5.3’s changes didn’t apply to my
situation. 10.5.4 did solve some issues that it wasn’t supposed to, but
the CAC recognition problem is still there.
Some people are talking about how the CAC is recognized by
the machine, but not by the target web site. How do they know? Someone mentioned
the CAC certs showing in the Keychain, but mine show there when the CAC is not attached.
When I go to AKO or the Navy PKI site, they obviously do not see the CAC.
Another thing was setting the system log to record website
URLs:
http://lists.apple.com/archives/Fed-talk/2008/Jul/msg00024.html
The “troubleshooting” section probably has some
incredibly useful information, but it leaves out most of the steps involved. The
commands to do this don’t help a lot if you’re not familiar with
how to do command line in OS X. I haven’t done Unix command line since
the early 90s, so I’m not up on what is safe and what isn’t, or
whether there are intermediate steps after bringing up the Terminal.
http://www.apple.com/itpro/federal/
has a lot of marketing stuff, but I’m not finding anything that says “this
is what you need to do, and look here if it doesn’t work”.
I would love to walk away from Windows. The reason I have
the Mac is because I spent 3 days fixing a .net framework issue on XP. But I
can setup an XP box to access the sites requiring a CA
I know how frustrating it can be doing detailed instructions
for newbies, but that’s where some of us are. Anybody up to the
challenge?
Bill Frame
(CTR)
Joint Program Executive Office for
Chemical and Biological Defense
Software Support Activity, San
Diego, CA
Senior Systems Engineer
Desk: 619.553.0799 Fax: 619.553.6902
Cell: 619.992.8983
email@hidden