CAC Reader no longer works after Upgrade to Monterey

I was having this same issue. I had to turn off part of my antivirus. Try turning it all off to see if that allows you to access the sites. If that works, then figure out which part of your antivirus is messing with it. For me it was part of Avast. I had to turn off a part of Web Shield. Turned off Web Shield and it worked, but I have since fine-tuned it by going to Preferences, then Core Shields, then Web Shield, and unchecking the Scan Secure Connections box. After that I could go back and turn Web Shield back on again and it is working great. https://security.stackexchange.com/questions/73476/why-is-avast-web-mail-shield-root-listed-as-ca-for-google-com

What OS did you upgrade from?

Pre-Big Sur usually required CAC enabling software to work. Those same CAC enablers will prevent it from working in Big Sur and later. So, if you upgraded from an OS previous to Big Sur, you may still have the CAC Enabler software installed and it needs to be removed. MilitaryCAC.com has instructions somewhere on the site.

Quick Follow up, I got this to work above way, just had to redo a couple times. Also I use chrome, it ended up working out. Had to clear the cache, and that was the hold up after restart

I even reinstalled the drivers for my SCR3310,v2 CAC reader.

That reader doesn't need any drivers. Maybe those are the cause of your problems.

I've used that same reader on both Intel and M1 Monterey Macs without issue. I have never installed a driver for it on any macOS version.

It appears to STILL NOT be reading the car- reader (SCR3310 v2.0). Could really more assistance. Thanks in advance.

If connected through a hub, try direct-connect to a USB port (with adapter if needed). You should see the light blink at least once when you connect it. If it doesn’t, it isn’t talking to your Mac.

As I said before, you should not need to do any installing or configuration. Hoping that running some random command you find on the Internet can only make things worse.

I have a related question, welcome any insight.

BLUF I have solved this problem by using Chrome (24" iMac M1 Monterey 12.0.1 Safari 15.1)

However-

Tried Safari to access DOD healthcare site using CAC login, Safari sees the certificates, asks me for PIN and then says "cannot establish a secure connection to the server".

Used Chrome on a whim and worked FIRST TIME no problems whatsoever.

What is up with Safari and DOD CAC Login?

I used to use Thursby PK software years ago but removed it all since CAC support is now integral to Mac OS, I double checked and it's definitely not there.

I purchased a MacBook Pro 14 last month and had a regular usb cac reader and download all the certs but nothing worked and I have it up to date with Monterrey. I bought a NEW USB “C” CAC READER plugged it in and was able to access a lot of military website navy that require a cac card. I purchased the new cac reader from Amazon but you should be able to find it at the bx / navy exchange

Safari caches certificates (at least that's my interpretation). I always use a private browser to prevent it caching anything.

Microsoft Edge works pretty well, too. And, you can turn a webpage into an "app." So, you can turn webmail into an App that you just double-click to open. Chrome may do the same as Edge is chromium based.

I would to be on the safe side. Cause I had them installed and I also trusted the certificate I usually use. When I plugged the cac reader I message popped up for pairing and I paired it and logged in my pin. And went to try email, nsips and so on and it worked..

Identiv SCR3310v2.0 USB Smart Card Reader (USB C) https://www.amazon.com/dp/B07VVSY96H/ref=cm_sw_r_cp_api_glt_i_16S8C3YM681F0T2CH56X

Do I need additional software in order for CAC reader to read my card and display certificate options?

No. If you have ever installed anything to use that reader or your CAC, you must remove it.

If you haven’t installed anything, it should work. You won’t see anything in keychain access. You will only get a pop up dialog asking which certificate you want to use, then a PIN entry.

Use Safari, under the developer tab select Microsoft Edge as your user agent...works for me.

Thank you for sharing. I recently upgraded to Monterey and now trying to set up my SCR3310 v2 CAC reader (was never set up before). However, after following all the instructions on militarycac.com, my CAC reader still will not read the card it seems.

I get the following message:

"An unexpected error occured validating your certificate. In order to log in with your Smart Card, please close your browser and all tabs associated with it and try again using the Authentication certificate or log in with your LOGIN ID and Password."

Do I need additional software in order for CAC reader to read my card and display certificate options? What is "VMware Horizon" and do you have a link for it, assuming that is what I am missing?