• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: [Fed-Talk] mail uses old x.509 certificate
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fed-Talk] mail uses old x.509 certificate

  • Subject: Re: [Fed-Talk] mail uses old x.509 certificate
  • From: Andrew Lambdin-Abraham <email@hidden>
  • Date: Thu, 5 Mar 2009 17:27:20 -0600
Could the Address Book entry be storing the certificate in the contact itself?

Can you reply to the signed email with an encrypted one?

Can you save the sender of the new signed email as a new contact and send encrypted email to that?

Andrew

On Mar 5, 2009, at 12:21 PM, Paul Derby wrote:

We have one user that needs to send encrypted email to another user at Los Alamos Labs.

The Los Alamos user's certificate expired. He sent a new, signed email resulting in the new certificate going to the keychain.

The keychain shows only the new certificate. Address Book shows the expired certificate. Apple Mail finds the expired certificate and won't encrypt because the cert has expired.

The old certificate does not show up anywhere in the keychain.

Is there somewhere else that Mail and Address Book check for certs? How is it that all certs don't appeal in the keychain?

I ran keychain firstaid and no errors are found.

Any idea where to look for the invisible cert?

Is there some sort of GREP command where you can find all certs? Spotlight doesn't find any certs.

Thanks for any help in locating this expired cert so we can remove it from the machine and so that Mail will allow encryption to this user again.

Paul

--
Paul Derby
Chief Enterprise Architect
supporting BioWatch Systems Program Office as IT Lead
Department of Homeland Security
email@hidden (preferred)
email@hidden
703-647-2745


_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden


_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden




  • Follow-Ups:

      

    • Re: [Fed-Talk] mail uses old x.509 certificate

      • From: "Walls, Bryan K. (MSFC-IS30)" <email@hidden>
      • 





References: 


 >[Fed-Talk] mail uses old x.509 certificate (From: Paul Derby <email@hidden>)






    

  • Prev by Date:
Re: [Fed-Talk] Opinions solicited: FW800 mini vs MacPro for home 	server?

    • 

  • Next by Date:
Re: [Fed-Talk] mail uses old x.509 certificate

    • 

  • Previous by thread:
[Fed-Talk] mail uses old x.509 certificate

    • 

  • Next by thread:
Re: [Fed-Talk] mail uses old x.509 certificate

    • 

  • Index(es):

      

    • Date
      • 

    • Thread
      • 

    

    •