Currently there is no support for Initializing uninitialized tokens in NSS. The reason for this is there has been little agreement on how to truly handle in in PKCS #11. For now each vendor is required to provide utilities to initialize their tokens, and manage the SO functions.
NSS can initialize the key and certs, however, once you've initialized a USER PIN. bob Chris wrote: > Again, I'm working with my smartcard based P11 module using Mozilla RC3. > > I have an uninitialized token with no user PIN and Mozilla will ask me > to generate a new password/PIN when I try to login. However, Mozilla > never asks for the SO PIN when doing this. After you enter your new > password/PIN Mozilla tries to verify a blank SO PIN (it has 0 length). > > Is there a way to make Mozilla verify the SO PIN correctly? > > Thanks! > > -- > // Chris >
