Re: [Fed-Talk] Apple Smart Card update 1.2 (UNCLASSIFIED)
Re: [Fed-Talk] Apple Smart Card update 1.2 (UNCLASSIFIED)
- Subject: Re: [Fed-Talk] Apple Smart Card update 1.2 (UNCLASSIFIED)
- From: "Schmeisser, Elmar (Civ, ARL/ARO)" <email@hidden>
- Date: Fri, 24 Oct 2008 10:08:44 -0400
- Thread-topic: [Fed-Talk] Apple Smart Card update 1.2 (UNCLASSIFIED)
Ah ha! Looking in that folder shows me that I do NOT have that file (SCR24XHndlr.bundle). Where do I get it?
- Elmar
----- Original Message -----
From: Shawn A. Geddis <email@hidden>
To: Schmeisser, Elmar (Civ, ARL/ARO)
Cc: email@hidden <email@hidden>
Sent: Thu Oct 23 08:55:26 2008
Subject: Re: [Fed-Talk] Apple Smart Card update 1.2 (UNCLASSIFIED)
On Oct 20, 2008, at 2:15 PM, Schmeisser, Elmar (Civ, ARL/ARO) wrote:
> Classification: UNCLASSIFIED
> Caveats: NONE
>
> Colleagues:
> ...
>> http://directory.fedoraproject.org/wiki/BuildCoolKey#Pre_Built_Binary
> ...
>> https://sites.google.com/a/compsolve.net/mac-cac/
>
> All this stuff refers only to INTEL machines and USB readers. Is
> there any
> data whatsoever on PCMCIA readers and PPC MACs e.g. a G4? I have
> 10.5.5 and
> patch 1.2 installed, and nothing works -
>
> Elmar T. Schmeisser, PhD
There appears to be some confusion as to what the SCSU v1.2 fixes,
what Reader Drivers are pre-installed and what services you are
actually using.
1) The SCSU v1.2 provides updates to the Smart Card Services to fix
problems with a combination of the following:
CCID Class Driver
Negotiating protocol with newer cards (T=1) (for CAC & PIV cards)
minor improvements to the PIV tokend (Additional updates still
coming)
2) Just about all PCMCIA Readers are not CCID Compliant and require
their own drivers
Apple pre-installs drivers support ( /usr/libexec/SmartCardServices/
drivers/ ) for the following PCMCIA Readers:
CRYPTOCard PC-1 (CC-PC-Card.bundle)
SCM SCR 24X (SCR24XHndlr.bundle)
OMNIKey CardMan 4040 (ifdok_cm4040_macos-2.0.0.bundle)
If your PCMCIA Reader is none of the above, you would need to acquire
a driver from the vendor or use one already
supported as noted above.
3) If you are attempting to use "CoolKey" that means that you are
wanting/needing to use a PKCS#11 based application (Mozilla, Firefox,
Thunderbird, etc.). If this is the case, then you will also need to
configure the application(s) to leverage the Smart Card (automatically
taken care of with OS X Security Native Applications).
- Shawn
_____________________________________________________
Shawn Geddis Security Consulting Engineer Apple Enterprise
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden