Stack Overflow
Stack Overflow

Questions tagged [cac]

The Common Access Card (CAC) is a United States Department of Defense (DoD) smart card, used for email signing, authentication, and access to DoD computers and networks.

The Common Access Card (CAC) is the standard identification for active-duty military personnel, Selected Reserve, DoD civilian employees, and eligible contractor personnel. It is a smart card that can be used for PKI and PIV purposes. In addition it has a 2D bar code for additional identification.

CAC Developer Resources.

110 questions
29
votes
3 answers

Common Access Card (CAC) Authentication Using Java

I'm bascially looking for someplace to start learning how to interface with a government CAC card using java. Ultimately, my goal is to find out how to use CAC card authentication (by PIN number) to authorize access to a website hosted using a…
Paul
13
votes
1 answer

Read smart card on demand

I am making an application in which a user would see a login page, enter his email address and a password. At that time I want the system to read his CAC certificates and permit him to choose. Right now all I can do is require the SSL and it asks…
Dean.DePue
  • 1,013
  • 1
  • 21
  • 45
11
votes
7 answers

DOD Common Access Card (CAC) Authentication

I have figured out all the necessary steps to get DOD CAC card based client certificate authentication working in Apache, but am now struggling to pull a good GUID for the user from the certificate I am receiving. Is there a GUID available on the…
Jim
11
votes
1 answer

Configuring Tomcat to accept DOD CAC card certificates

I’m running an application on a stand-alone tomcat 6 server on a Windows box. I want it to be able to request and receive client certificates from DoD CAC cards. I have a client machine running IE that set up correctly to pass the certs from a…
David Harris
  • 705
  • 1
  • 7
  • 16
10
votes
3 answers

CAC Smartcard Reauthenticate

We have one browser-based application where we want to make the user reauthenticate when they enter it. So when they access that URL we want them to be presented with the PIN prompt so they have to reauthenticate. Is there a reasonable way to do…
adg
  • 552
  • 1
  • 6
  • 17
9
votes
1 answer

How to connect to HTTPS server using Common Access Card

I need to write a java program to connect to a HTTPS server (DoD website). The website requires CAC (DoD common access card) authentication. If you access this site via browser, you insert your CAC first, and then enter a PIN. I need to accomplish…
yaya
6
votes
1 answer

Apache authentication via DOD PKI CAC

How does one implement Apache (within Linux) authentication using Department of Defense CAC cards? I've heard it can be done but have not come across any details. Currently we use Windows Active directory for Apache authentication but only…
Mr Gaylen Wong
6
votes
2 answers

CAC cards and web servers

I have a client that wants to implement CAC with our website. Usually the user already has access based on the certificates assigned to them. They want to be validated by entering their CAC pin code when they click a button to log in. I'm using…
GameScrub
  • 177
  • 1
  • 11
6
votes
2 answers

DoD CAC Authentication - Client Certificate Issue with .NET C#, Windows Server 2008 R2, IIS 7.5

We have developed a .NET C# web application for DoD that uses CAC (Common Access Card) as the sole method of authentication. We have a trusted SSLs on the servers, the application is running in several locations, and everything is working as it…
Joe D.
  • 63
  • 1
  • 4
5
votes
2 answers

Using US Military Common Access Card (CAC) Personal Identity Verification (PIV) for authentication in Drupal

I have a requirement to enable logging into a new Drupal powered site using the military Common Access Card/Personal Identify Verification system. I have come across this module: http://drupal.org/sandbox/larquin/1292622 but there is no code. Is…
Yermo Lamers
  • 1,911
  • 14
  • 25
5
votes
3 answers

CAC Client Application Authentication in Python

I am building a python application to pull data from a website. The application has to authenticate(HTTPS/SSL) with a CAC card and pin in order to make requests. Am I correct in my assumptions that you can't retrieve the private key from a CAC card,…
Präriewolf
  • 829
  • 2
  • 9
  • 28
5
votes
1 answer

Using Java PKCS#11 to read DoD Common Access Card

I have researched on how to use Sun PKCS#11 api to access a DoD CAC and possibly use the CAC to access (read-only) Active Directory. My problem has been, what I have found in most cases will make a reference to some code, but never shows the…
Donninet
  • 61
  • 1
  • 4
4
votes
1 answer

How to authenticate user with CAC in Node/Express

I need to allow users to log into my react website using their DoD issued Common Access Card. I am using an express api as an authentication server. I've got the server configured to require a client cert: const options = { key:…
JeffW
  • 176
  • 1
  • 14
4
votes
0 answers

Authenticate a user using CAC (Common Access Card) in a web application running in Jetty for an application used by a US government agency

I've been recently tasked with a similar task that this question describes. My task is to enable a web application to verify credentials via a CAC card. My web application is running on an embedded Jetty server running in an OSGi container. While…
twindham
  • 930
  • 9
  • 31
4
votes
1 answer

Where is smart card authentication done for Java Web apps?

I am rather stumped by trying to identify where CAC/Active Directory(AD) authentication comes into play for Java based web applications. Take for example multiple J2E JSF applications hosted on multiple Weblogic containers. Each of those…
angryip
  • 2,140
  • 5
  • 33
  • 67
1
2 3 4 5 6 7 8