[Fed-Talk] CACNG.tokend and Leopard
[Fed-Talk] CACNG.tokend and Leopard
- Subject: [Fed-Talk] CACNG.tokend and Leopard
- From: "Shomo, Michelle L Ms CTR USA NETCOM" <email@hidden>
- Date: Wed, 27 Apr 2011 13:41:42 -0400
- Priority: normal
I previously completed testing with Leopard and CACNG tokend, and it was working fine. However last week I had to download the CACNG drivers from the macosforge site again and now when trying to use a Gemalto 144k CAC with Safari I get prompted repeatedly to select a certificate, that the one presented is not accepted.
The issue is being experienced with both Safari 4 and multiple versions of Safari 5. When using Chrome you receive an SSL Connection Error 107. The certificates are listed in a different order within Keychain Access as well. Also with Safari 5 I noticed that it doesn't prompt for a certificate unless you already have an ID Preference setup within Keychain Access (it isn't attempting to add ID Preferences unless one already exists).
The correct certificate is being selected (verified using the serial number) based on what is displayed. The CAC works from the Snow Leopard and Windows systems, so the issue is not the CAC or the websites.
I know that a previous version of the Leopard CACNG had the same symptoms, it appeared that is was sending the same wrong certificate every time no matter which certificate was selected, however when the last release came out this issue was fixed.
Is there any way to verify I have the correct CACNG version? And that the correct version is posted to macosforge.org
The issue is repeatable. I have at least two users with the issue and I have at least 2 systems in the lab with the same issue.
Any ideas?
Thanks,
Michelle
~~~~~~~~~~~~~~~~~~~~~~~~~~
Michelle Shomo, CISSP
email@hidden
~~~~~~~~~~~~~~~~~~~~~~~~~~
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden