Skip to main content
Question

Smart Card Integration with Active Directory

  • July 22, 2011
  • 2 replies
  • 8 views
A
  • Anonymous

We're looking for a product which allows smart card integration with Active Directory on Macintosh (10.6 - 10.7). I'm currently evaluating Direct Control by Centrify. So far my experience hasn't been very good since it seems to break our Casper Image. For some strange reason the mobile profiles aren't built from the standard user template folder (FUT) so all of our customization is lost. Does anyone have recommends on Smart Card integration production for Macintosh's or had a better experience with Centrify's Direct Access?

Regards,
Matt

    2 replies

    J
    Forum|alt.badge.img+24
    • jarednichols
    • Valued Contributor
    • July 22, 2011

    If you're talking exclusively on 10.7 here, mobile profiles on AD users is broken in the GM. Apple is aware. Unfortunately, this is a show-stopper for us.

    j

    J
    Forum|alt.badge.img+24
    • jarednichols
    • Valued Contributor
    • July 22, 2011

    +1

    Shawn Geddis just posted (yesterday?) a long post about SmartCard services in 10.7 and why it's changing. Bottom line is that the existing crypto architecture has been deprecated in favor of a new architecture, CommonCrypto, that can be leveraged on both iOS and Desktop OS. CommonCrypto has already been submitted for FIPS 140-2 accreditation when it comes to iOS so FIPS for desktop OS shouldn't be far behind, one would figure.

    j
    ---
    Jared F. Nichols
    Desktop Engineer, Client Services
    Information Services Department
    MIT Lincoln Laboratory
    244 Wood Street
    Lexington, Massachusetts 02420
    781.981.5436

    Terms & ConditionsCookie settingsAccessibility statement