hello all,
can anyone please tell me how can i start digital signature process on my non java smart card in LINUX system
.i am using pcsc-lite-1.2.9-beta6 middleware and schlumberger reflex72 v1.both are working fine.i downloaded them from Muscle site.my certificates are already loaded in the smart card i just have to read the contents of smart card and start the process.
the smart card i am using is not a java card.
java API's and PKCS#11 Wrapper is also available with me.
do i need PKCS#11 module to start the process?
please some one suggest me from where can i get it and how should i start.
First of all you need to generate login certificates. You can use openssl for that. If you want and easy program to run a demo quickly you could use tinyca (an easy to use gui). Of course you should generate login certificate inside the card or at least import it (you could use firefox for that if you want a gui). For my tests I've used the username as the CN of the certificate.
Then you can download and install PAM PKCS#11 module from: http://n.ethz.ch/student/mariost/pkcs11_login/
It has instructions on how to setup it. I recommend using xdm for the tests because, at least in my Debian system, you can see pam modules's debug messages on console (gdm doesn't show them although I haven't check if it's a configuration issue).
If you haven't set any crl url use crl_policy=none (and not auto as in the example configuration). You won't want this in a production environment, of course, this is just to setup it quickly for testing.
Regards, -- Josep Monés [EMAIL PROTECTED] C3PO, S.L.
_______________________________________________ Muscle mailing list [EMAIL PROTECTED] http://lists.drizzle.com/mailman/listinfo/muscle
