Hi Guiseppe,
the problems I had in the last few days seem faded... :-))))
fine :)
is it possible to store the generated certificates into USB keys? download into a token is the way to follow....???
Both is simply an issue of your clients OS, not of OpenCA - if you use OpenCA via the Browser for certificate handling you have to make the usb token available to the browser and select it as keystore for the browser-bvased certificate request procedure. (works in FF and IE)
If you already have the keys/certs you must use some application to bring the keypair onto the token.....
> is it possibile to use this key containing the user certificates to > authenticate the user when he logs into the PC comparing such > information with those contained in the ldap server instead of using the > etc/passwd file?Yes, pam_ldap together with some smart-card setup should do...never did it, but should work - if you maange it, a HowTo for the innocent once would be fine .)
Oliver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72
smime.p7s
Description: S/MIME Cryptographic Signature
