CAC for a Mac is the ability to use a Department of Defense (DoD) common access card (CAC) on Apple Macintosh computers to access Web sites that require DoD certificate authentication. It was written to allow Navy Marine Corps Intranet (NMCI) users to access their NMCI e-mail using the NMCI Microsoft Outlook Web Access (OWA) portal. Download the DoD Root CA 3 cert here: DoD Root CA 3. Click Allow to download configuration profile. Go to Settings General Profiles and Device Management and tap on DoD Root CA 3. Tap Install and enter your passcode if asked. Tap Install 2x to install certificate. Tap Done on top right.
Apr 21, 2020 Now that you have a CAC reader, certificates, and a CAC Enabler, you should now be able to access any CAC-enabled website and log on using your CAC password and data. Common Reasons Why Your CAC Card Won’t Work On Your Mac. Ensure Your CAC Card Meets the Standards: In order for your CAC card to work, it must meet the minimal requirements.
The steps for configuring Client side SSL (CSSL) for a SecureAuth appliance setup to validate CAC or PIV Cards
When SecureAuth prompts for a CAC or PIV certificate your webserver is actually matching the client side SSL certificates with the certificates that are installed on your SecureAuth appliance. In order to check these client side certificates we need to install the root and intermediate certificates on the appliance. If you have a specific set of root and intermediate certificates you can install them, if you do not this is the process to install the DOD root and intermediate certificates on the SecureAuth appliance.
1. Open the browser on the server and navigate tomilitarycac.com's download section HERE
2. Download'InstallRoot 3.13.1a from MilitaryCAC'
3. You might be prompted to add militarycac.com to your trusted sites to complete the download
4. Click 'Open' so that the file automatically launches
5. Right-click 'InstallRoot_v3.13.1A' and select 'Run as administrator'
6. At the security warning click 'Yes'
7. Accept the security warning if prompted
1. Click the start menu/SecureAuth/Tools and select 'Certificates Console'
2. Navigate to 'Trusted Root Certification Authorities' and ensure you have the DOD Root CA certificate installed
3. Navigate to 'Intermediate Certificate Authorities' and ensure the intermediate certs are there
Individuals who have a valid authorized need to access DoD Public Key Infrastructure (PKI)- protected information but do not have access to a government site or government-furnished equipment will need to configure their systems to access PKI-protected content.
Accessing DoD PKI-protected information is most commonly achieved using the PKI certificates stored on your Common Access Card (CAC). The certificates on your CAC can allow you to perform routine activities such as accessing OWA, signing documents, and viewing other PKI-protected information online. For more information about your CAC and the information stored on it, visit http://www.cac.mil.
Before you begin, make sure you know your organization’s policies regarding remote use.
Windows
To get started you will need:
You can get started using your CAC by following these basic steps:
Mac
To get started you will need:
You can get started using your CAC on your Mac OS X system by following these basic steps:
Note: CACs are currently made of different kinds of card stock. To determine what card stock you have, look at the back of your CAC above the magnetic strip. Most CACs are supported by the Smartcard Services package, however Oberthur ID One 128 v5.5 CACs are not. Third party middleware is available that will support these CACS; two such options are Thursby Software’s PKard and Centrify’s Express for Smart Card.
Linux
To get started you will need:
You can get started using your CAC with Firefox on Linux machines by following these basic steps:
If you prefer to build CoolKey from source, instructions are included in the Configuring Firefox for the CAC guide.
Your internet browser is now configured to access DoD websites using the certificates on your CAC. Now that your machine is properly configured, please login and visit our End Users page for more information on using the PKI certificates on your CAC.