Re: [Fed-Talk] [Non-DoD Source] export CAC certificate(s) on Big Sur?
Re: [Fed-Talk] [Non-DoD Source] export CAC certificate(s) on Big Sur?
- Subject: Re: [Fed-Talk] [Non-DoD Source] export CAC certificate(s) on Big Sur?
- From: "Brodjieski, Daniel D CTR DISA SE \(USA\) via Fed-talk" <email@hidden>
- Date: Thu, 28 Jan 2021 18:09:16 +0000
- Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=mail.mil; dmarc=pass action=none header.from=mail.mil; dkim=pass header.d=mail.mil; arc=none
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5501; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=PCRg/dB5pICLlGLXygy2GqHdXpQw+KydyoaBQIg9fvM=; b=otc1uMi900mIeIYmO0uMdclT2OSzFcQlswQVmLuTc2rSUug4Zjtfyeo3ZplRXt+pp22OHv2sTbA6Wzi4hb2omnYFhJdljztYX+aeAdagMr1+MEgEj0JUfS1hNQm7JZFi2nqABWCImo8gcIqeUmzmnaD7uvudogA7JZArAm9ZwCT4wfeltSeomiGu7Bh9bFRd4LJBtJcRtjpQBwN2c5gVOiZhqVt6vbLIJ1B4hZTA9+Xg70DjcmsgX4kDHHpiGuuukBs8SLY6uzYnyubgnq+OcEB1eSc3H+lZyd3/3auxnNlkD7H5aE1Ce46L9CBlFVUQIMU07WREz73etm8P9jVmpw==
- Arc-seal: i=1; a=rsa-sha256; s=arcselector5501; d=microsoft.com; cv=none; b=h7AuztKpIC69YPprII+A2WPhDdJeY+rOWeAz1MT2mJL+RofG9L5AufWhcl+jOPGMyaZiuflOYz26QP23NxE1bcjTjb7LNRVnz7ncTo26vWoANZqSBXXScuQXLQwSZZ8G2zRvta2enSf1YnW6+OKYxY3vmcumnqNaHZNGDBX/DNFcqtqnvB6M5Yg4vLdqUTbKLJFFrmtL9NglaZiLCuC3K81/AbqH0BH4I3m3NObQo6/dn8Pezqd4fOyO0wrQw8w3HPJ3XRyB+p/koQWCSv1klgrsc5NfrwV526YuLyEsLD77tNCZnPs5BQCZkbPTm2JTr8EPdUICeTRthAxyAy0yCQ==
- Thread-topic: [Non-DoD Source] [Fed-Talk] export CAC certificate(s) on Big Sur?
Hey Jeff-
On Big Sur, Keychain Access doesn’t show your CAC certificates. That was
facilitated by middleware that is no longer supported on Big Sur.
To export your certs, you can open Terminal.app and run the following:
security export-smartcard -e ~/Desktop/
This will save a .pem file for each certificate and public key to your Desktop.
They will be named something like:
Certificate for PIV Authentication (LASTNAME.FIRSTNAME.EDIPI).pem
Certificate for Digital Signature (LASTNAME.FIRSTNAME.EDIPI).pem
Certificate for Key Management (LASTNAME.FIRSTNAME.EDIPI).pem
Public Key - Certificate for PIV Authentication (LASTNAME.FIRSTNAME.EDIPI).pem
Public Key - Certificate for Digital Signature (LASTNAME.FIRSTNAME.EDIPI).pem
Public Key - Certificate for Key Management (LASTNAME.FIRSTNAME.EDIPI).pem
Hope that helps!
Dan
From: Jeff Haferman via Fed-talk <email@hidden>
Reply-To: Jeff Haferman <email@hidden>
Date: Thursday, January 28, 2021 at 1:00 PM
To: "email@hidden" <email@hidden>
Subject: [Non-DoD Source] [Fed-Talk] export CAC certificate(s) on Big Sur?
All active links contained in this email were disabled. Please verify the
identity of the sender, and confirm the authenticity of all links contained
within the message prior to copying and pasting the address to a Web browser.
________________________________
I need to register my CAC in order to access a DoD site
(in this case Caution-https://piee.eb.mil/piee-landing/ <
Caution-https://piee.eb.mil/piee-landing/ > )
Of course the instructions I received assumed an underlying Windows OS (use
Active Client, Internet Explorer, or Edge).
There is one section that says I can do it on a Chrome Browser, but Chrome ends
up opening Keychain Access. When a colleague (on Catalina) does this, he can
see his CAC in Keychain and export his certificates.
On Big Sur, I don't see my CAC certificates. I'm assuming the cause is Big Sur,
but I could be wrong.
Should I be able to see my CAC certificates in Keychain Access on Big Sur? Or
do I need to find a Windows machine?
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden