Military Cac For Mac, No Client Certificate Presented

Windows Secure Shell Client With Support For Smart Cards & Certificates - NoMoreFood/putty-cac.

  1. By far the best site around cross platform CAC support for iPad, iPhone, Mac, Linux, Android and legacy Windows or BlackBerry devices. Add the Webutation certificate to your website. Find information regarding the Department of Defense Common Access Card (CAC); Benefits afforded to Federal employees.
  2. The next generation of ActivCard® Gold™ for CAC, the leading smart card-based strong authentication software for the DOD Common Access Card enables usage of PKI certificates and keys on a CAC to secure desktop applications, network login, remote access, web login, e-mail and electronic transactions.
Active4 years, 1 month ago

I have a C application that uses LibCurl (LibCurl is a C API that makes an HTTP connection to a web server). Using LibCurl I need to download a file from an HTTPS server that requires a client certificate.

So far our technical solution works great.

Military Cac For Mac No Client Certificate Presented On

My problem is that the client certificate that we need to use resides on a DoD CAC card. I need to be able to pull the client certificate off of the DOD CAC card (from within my C app) and either write it to a file or just reference the file on the CAC. This written or referenced file will then be specified as my client certificate in my HTTPS connection.

I do not know how to locate or reference the client certificate off the DoD CAC Card. Any help is very much appreciated. Thanks.

skaffman
352k90 gold badges746 silver badges733 bronze badges
kmehtakmehta
1,3974 gold badges22 silver badges33 bronze badges

Military Cac For Mac No Client Certificate Presented Ako

2 Answers

When activeClient publishes the CAC card certs to windows it should export the certs to the store. You may need to automate the exporting of the certificate from your local cert store to a file like .pfx or .p7b format. Maybe .cer, I don't know if that's possible. It'll need to be pwd protected.

I don't think you can do it directly from the CAC card without an intermediary middle layer (like the cert store).

ForApollo SOFTWAREApollo SOFTWARE
10.3k4 gold badges39 silver badges59 bronze badges

This is the method for C# it may help with C I'm really not familiar with C code.

The code to get and export the cert is

The export method has various types to export to I am not sure if one will be the format you are referring to. This is something you will need to play with. I am not even sure you will be able to use those libraries in C but just in case you could I posted them.

o0knight0oo0knight0o

Not the answer you're looking for? Browse other questions tagged httpsclient-certificatescac or ask your own question.