Hi,
Sorry to bother the list with a question like this but I've hit a dead end
and not sure where to turn next.
My organization recently issued me a new PIV card and I cannot locate my
authentication cert/key on it. The card works fine on my org-issued Windows
laptop and I'm trying to use it with OC on a Linux system.
With my old card (PIV-II) I could easily list the certs, etc, using p11tool
and OC has been working great with it (and thanks for that!).
With the new card I cannot see any certs/keys. `p11tool --list-tokens`
returns two tokens with the names "System Trust" and "Default Trust" with
type "Trust module" (does this imply TPM and, if so, how is that dealt
with?). Listing "System Trust" returns no objects and "Default Trust"
returns 158 CA certs. Using `p11tool --info` on "System Trust" returns 789
objects (none appear to be an authentication object for me) and "Default
Trust" returns one object called "Trust Anchor Roots".
The card type is "ID-One Cosmo v8.0 128K with PIV 2.3.5" (Oberthur) and the
ATR is:
3B D6 97 00 81 B1 FE 45 1F 07 80 31 C1 52 11 18 F9
(which is identified as a NASA card in the smartcard list; FWIW, I work for
USG but not NASA).
This is as far as I've been able to get with this thing. I'm (desperately)
hoping someone can point me in the right direction on this.
Thanks!
~ray
_______________________________________________
openconnect-devel mailing list
openconnect-devel@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/openconnect-devel
