On 3/26/10 7:59 AM, "Shawn A. Geddis" <geddis@apple.com> wrote:
It is true that earlier versions of Acrobat required PKCS#11 and current versions utilize Apple's built-in Security Services (inculding keychains), but they do not use the "System" keychain as noted. They access your supported Smart Card as a Keychain via the APIs, but the System Keychain is a separate keychain altogether.
I guess I wasn't clear. I didn't mean the System Keychain specifically, but rather the operating system provided Keychain services generically, as it it uses the Keychain stuff rather than needing to be linked to a PKCS#11 module like Coolkey.
There is no need to ever "load the DoD PKI certificates" to use the CAC-NG, unless you are referring to the newest Intermediate CAs that were just published and not yet included in a Software Update for Mac OS X. DOD CA-25, DOD CA-26, DOD EMAIL CA-25, DOD EMAIL CA-26
Actually, I was referring to importing the certs into Adobe Reader's certificate list, not into the OS X Keychain. Maybe it doesn't need it anymore? I haven't had to set this up in a while. - David