Public Key Enabling Firefox

Similar documents
OUTLOOK WEB ACCESS (OWA) AND SSL VPN HOME USERS MANUAL

Supplement I.B: Installing and Configuring JDK 1.6

Supplement I.B: Installing and Configuring JDK 1.6

OUTLOOK WEB ACCESS (OWA) AND SSL VPN HOME USERS MANUAL

S/MIME on Good for Enterprise MS Online Certificate Status Protocol. Installation and Configuration Notes. Updated: October 08, 2014

Certificate Request Generation and Certificate Installation Instructions for IIS 5 April 14, 2006

Use of Common Access Cards (CACs) from Home on Windows 7 without Middleware

How to install and use the File Sharing Outlook Plugin

SENDING AND RECEIVING PROTECTED INFORMATION VIA ELECTRONIC MAIL. Naval Medical Center Portsmouth IMD Training Division

ECA IIS Instructions. January 2005

Practice Fusion API Client Installation Guide for Windows

FBCA Cross-Certificate Remover 1.12 User Guide


Pre-Requisites: PC and Browser Configuration Guide v1.3

This tutorial provides detailed instructions to help you download and configure Internet Explorer 6.0 for use with Web Commerce application.

Outlook Web Access 2003 Remote User Guide

Banner Frequently Asked Questions (FAQs)

Entrust Managed Services PKI Administrator Guide

Smart Card Certificate Authentication with VMware View 4.5 and Above WHITE PAPER

Entrust Managed Services PKI Administrator s Quick Start Guide

Table of Contents. Oracle/Sun JRE Upgrade Instructions. Verify Hard Disk Space JRE

Passport installation Windows 8 + Firefox

Accessing the Online Meeting Room (Blackboard Collaborate)

Wavecrest Certificate

Install MS SQL Server 2012 Express Edition

PDF Bookmarks Help Page: When clicking on a Bookmark and Nothing Happens (or sometimes 'File Not Found' Error)

Internet Explorer 7 for Windows XP: Obtaining MIT Certificates

Managed Services PKI 60-day Trial Quick Start Guide

How to Publish Your Smart Card Certificates Using Outlook 2010

MadCap Software. Upgrading Guide. Pulse

Presented by: Michael J. Danberry. Last Revision / review: 07 October ActivClient download locations:

IMPORTING AND EXPORTING CERTIFICATES IN IE AND FIREFOX FOR BPIA AND PRACS

Entrust Managed Services PKI. Configuring secure LDAP with Domain Controller digital certificates

Manual of UPClink VPN.UPC.EDU (For Windows 7)

Jolly Server Getting Started Guide

DOD INTERIM CREDENTIAL IMPLEMENTATION INSTRUCTIONS BlackBerry Devices

Network Connect Installation and Usage Guide

This walk-through was created using Windows XP as a guide, however alternate versions of the Windows OS will be very similar in procedure as well.

PKI Contacts PKI for Fraunhofer Contacts

Important Notes for WinConnect Server VS Software Installation:

Test Plan for Department of Defense (DoD) Public Key Infrastructure (PKI) Interagency/Partner Interoperability. Version 1.0.3

USING SSL/TLS WITH TERMINAL EMULATION

RAPIDS Self Service User Guide

Yale Software Library

Joint Knowledge Online. CAC Login Troubleshooting Guide

Outlook Plugin. What is MangoApps for Outlook?

Creating a Distribution List from an Excel Spreadsheet

SHIPSTATION / MIVA MERCHANT SETUP GUIDE

CHECK POINT MOBILE ACCESS VPN

Exostar LDAP Proxy / Secure Setup Guide. This document provides information on the following topics:

Configuring Network Load Balancing with Cerberus FTP Server

A Step-by-Step Patient Guide to Upload Medical Images to the Cleveland Clinic Neurological Institute

Help. F-Secure Online Backup

2-334 BN (BCT) - United States Army s Common Access Card (CAC) Instructional Units

Jumble for Microsoft Outlook

SSL Intercept Mode. Certificate Installation Guide. Revision Warning and Disclaimer

Uninstall Check Scanning software (Fujitsu S300)

NovaBACKUP xsp Version 12.2 Upgrade Guide

UserGuide ReflectionPKIServicesManager


Docufide Client Installation Guide for Windows

Outlook Web Access Guide to Installing Root Certificates, Generating CSR and Installing SSL Certificate

Table of Contents. Welcome Login Password Assistance Self Registration Secure Mail Compose Drafts...

FAQ: troubleshooting Java for Saba Web Access

Microsoft Exchange 2010 and 2007

Download and Installation Instructions. Java JDK Software for Windows

What is Aconex Local Copy? Controlling Access to a Datastore Hardware Requirements Software Requirements Installing Aconex Local Copy Troubleshooting

Oracle Java (8u31) Installation

Using Internet or Windows Explorer to Upload Your Site

How To Restore Your Data On A Backup By Mozy (Windows) On A Pc Or Macbook Or Macintosh (Windows 2) On Your Computer Or Mac) On An Pc Or Ipad (Windows 3) On Pc Or Pc Or Micro

Standard Client Configuration Requirements

ID Pictures collection for Membership card of ARBH- KBHB/LFH/VHL

Accessing DoD Enterprise , AKO, and other DoD websites with Internet Explorer & Edge on your Windows computer

STATISTICA VERSION 10 STATISTICA ENTERPRISE SERVER INSTALLATION INSTRUCTIONS

F-Secure Messaging Security Gateway. Deployment Guide

Smart Control Center. User Guide. 350 East Plumeria Drive San Jose, CA USA. November v1.0

GX/GP Firmware Upgrade Procedure

THE GOVERNMENT OF THE REPUBLIC OF SINGAPORE MINISTRY OF MANPOWER WP ONLINE. Technical Guidelines


Pharmacy Affairs Branch. Website Database Downloads PUBLIC ACCESS GUIDE

Using Entrust certificates with Adobe PDF files and forms

User guide. Business

Virtual Office Remote Installation Guide

Installation Guide for Windows May 2016

SSL VPN Service. To get started using the NASA IV&V/WVU SSL VPN service, you must verify that you meet all required criteria specified here:

Place a Call on Hold 1) In Call Control Area, click to select call to hold. 2) Click Hold button.

Mesa DMS. Once you access the Mesa Document Management link, you will see the following Mesa DMS - Microsoft Internet Explorer" window:

APIS CARM NG Quick Start Guide for MS Windows

Plug-in for Microsoft Outlook User Guide

SharePoint AD Information Sync Installation Instruction

Quick Guide #3G: Philips MRx Configuration and Operation with Rosetta- DS (Bluetooth Connection)

Using Remote Web Workplace Version 1.01

Java. How to install the Java Runtime Environment (JRE)

Validating Digital Signatures in Adobe

Aspera Connect User Guide

Figure 1: Restore Tab

BusinessObjects Enterprise XI Release 2

Follow the instructions below for first-time users only

Steps to Enroll for a PKI Digital Certificate on Windows-7 machine

Dartmouth College Technical Support Document for Kronos PC version

Transcription:

DoD Public Key Enablement (PKE) Reference Guide Public Key Enabling Firefox Contact: PKE_Support@disa.mil URL: http://iase.disa.mil/pki/pke Public Key Enabling Firefox 3 March 2010 Version 1.1 DOD PKE Team

Revision History Issue Date Revision Change Description 1/18/10 1.0 Initial Document Creation 3/5/10 1.1 Updated Document to comply with new QRG format ii

Contents CONTENTS...III INTRODUCTION...4 PURPOSE...4 SCOPE...4 INSTALL CERTIFICATES FROM INSTALLROOT...5 USING COMMON ACCESS CARD (CAC) CERTIFICATES IN FIREFOX...6 ENSURE ONLINE CERTIFICATE STATUS PROTOCOL (OCSP) IS CONFIRMING CERTIFICATE VALIDITY...10 APPENDIX A: SUPPLEMENTAL INFORMATION...12 iii

Introduction The DoD Public Key Enablement (PKE) Reference Guides (RGs) are developed to help an organization augment their security posture through the use of the Public Key Infrastructure (PKI). The PKE RGs contain procedures for obtaining DoD certificates and enabling specific technologies for use with those certificates. Purpose The goal of this RG is to aid in enabling Firefox for use with DoD websites. Contained in this document are instructions to install your certificate, use the CAC with Firefox, and configure certificate validation for Firefox. The overall goal is to PK-Enable Firefox. Scope This document is intended for all users of PKI technologies. No in depth knowledge of PKI is required, and no intimate knowledge of CACs is necessary. Some experience installing and configuring software on the Windows platforms is helpful when reading this guide. 4

Install Certificates from InstallRoot 1) Download and install the InstallRoot tool. Java will need to either be installed on the system, if not, the version of InstallRoot with JRE bundled will be necessary. InstallRoot may be downloaded from: https://www.dodpke.com/installroot/ 2) Open the InstallRoot tool and select Firefox/Mozilla/Netscape from the tab at the bottom. 3) Be sure only the top box is checked within NIPR. 4) Click the Install button and wait for the installation to complete. Please wait until you see a confirmation dialog indicating the tool is finished. NOTE: If possible, when using the InstallRoot tool, be sure your CAC is not in the systems card reader. 5

Using Common Access Card (CAC) certificates in Firefox These instructions will enable ActivIdentity s ActivClient software to work within Firefox. Before proceeding, try to ensure the latest version of ActivClient is installed by going to the ActivClient website to check the latest version. Before installing the latest version, please uninstall any previous versions of ActivClient. As of version 6.2, ActivClient by default configures Firefox to accept the CAC certificates without any additional configuration. You may use the following instructions to verify that it has been installed properly. If using an older version of ActivClient, these instructions will assist with proper configuration. 1) Open Firefox 2) Click on Tools -> Options in the menu bar. 6

3) In the Options window, go to Advanced -> Encryption -> Security Devices. 7

4) In the new window, click on Load. 5) Enter "ActivClient(CAC)" for the Module Name and "c:\windows\system32\acpkcs201- ns.dll" for Module Filename and click OK, and then OK again in the confirmation window. 6) The confirmation message will show that the security device (CAC) was loaded. CAC certificates can now be used with the browser. 8

9

Ensure Online Certificate Status Protocol (OCSP) is Confirming Certificate Validity With any versions of ActivClient later than 6.2, these settings will be automatically configured. However, these instructions can be used to confirm proper configuration for older versions of ActivClient. 1) Open Firefox 2) Click on Tools -> Options in the menu bar. 10

3) In the Options window, go to Advanced -> Encryption -> Validation. 4) Ensure the option Use the OCSP to confirm the current validity of certificates is checked. If checked, Firefox is now properly OCSP enabled. 11

Appendix A: Supplemental Information Website Please visit the URL below for additional information www.iase.disa.mil/pki/pke Technical Support Contact technical support PKE_Support@disa.mil Acronyms AIA CA CRLDP DV LDAP MSCAPI OCSP PKE RCVS VA Authority Information Access Certificate Authority Certificate Revocation List Distribution Point Desktop Validator Lightweight Directory Access Protocol Microsoft Crypto API Online Certificate Status Protocol Public Key Enablement Robust Certificate Validation Service Validation Authority 12

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information