Re: [Fed-Talk] Air Force Portal Run-down
Re: [Fed-Talk] Air Force Portal Run-down
- Subject: Re: [Fed-Talk] Air Force Portal Run-down
- From: "Timothy J. Miller" <email@hidden>
- Date: Thu, 30 Jul 2009 10:44:51 -0500
Arendt, Christopher D Capt USAF AETC AFLMA/AFLMA/LGY wrote:
To that end, does anybody know specifically why CAC log-in on the Air
Force Portal fails?
AFAICT it's because the portal landing page and the CAC authentication
page are under the same top-level URI. I.e., you land at
https://www.my.af.mil, and the PKI-authentication is set for a page
deeper under the same URL (at https://www.my.af.mil/EAI_JUNCTION/eai/).
Contrast this to how AKO does it. The AKO portal landing page (no PKI
authentication required) is at https://www.us.army.mil, but the PKI
authentication page is under https://akocac.us.army.mil.
This is strictly a bug in Safari's SSL authentication handling, probably
in the identity preference matching code.
Does the server need to **require** certificate authentication?
It would probably help, but it would interfere with the landing page.
Is there some other configuration adjustment that I could suggest?
Not on your end, except to use Firefox.
-- Tim
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden