Hi Dave, you mean having a Smart-Card interface on the CA directly ? Can you explain a bit more ? On the CA itself, there's no difference if a request is generated by using a software library or a hardware token.. it is really only a matter of the client.
Anyhow, in LibPKI I am working at a SCEP client that would make things easy to request certificates by using a command line approach and since LibPKI directly supports PKCS#11 devices, this would eliminate the need to use a browser for smart-cards support. As I am working at the new release of OpenCA (1.1.0) I have not been working at the tool for libpki recently (I should release the new LibPKI version quite soon - I just need time to work on it!), but maybe that will help you in "managing" smart-cards. The best would be to write a small GUI-based client (so far it is command-line based). Another project I started is the extension for Firefox that uses the SCEP interface of OpenCA instead of the usual "browser-based" one. But that will require quite some time before it can be usable... Cheers, Max On 02/04/2010 01:21 PM, blain...@gdls.com wrote:
Thanks for the response. I have no problems generating requests and issuing smartcard certificates. Our process generates them all within OpenCA and then we download them out and install them on the smartcards. I was wondering if somehow the certificates could be written directly out of OpenCA (bypassing the downloading part). Dave
--
Best Regards,
Massimiliano Pala
--o------------------------------------------------------------------------
Massimiliano Pala [OpenCA Project Manager] ope...@acm.org
project.mana...@openca.org
Dartmouth Computer Science Dept Home Phone: +1 (603) 369-9332
PKI/Trust Laboratory Work Phone: +1 (603) 646-8734
--o------------------------------------------------------------------------
People who think they know everything are a great annoyance to those of us
who do.
-- Isaac Asimov
smime.p7s
Description: S/MIME Cryptographic Signature
------------------------------------------------------------------------------ The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com
_______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
