Hello Jörn, I am sorry but there is no other way to do so at the moment.
Might you share your integration efforts for the public? We are always interessted in "light HSM" solutions. Oliver Am 03.07.19 um 17:12 schrieb Jörn Heissler: > Hello, > > I'm trying to configure OpenXPKI to use a small HSM (OpenPGP Card), > https://g10code.com/p-card.html > > The same private key cannot be used for signing and decrypting. > I only need the signing ability anyway, e.g. to issue some certificates. > > OpenXPKI tries to determine if my token is usable by encrypting a string > with pkcs7 and then using my token to decrypt it. This does not work and > cannot be made to work. > > The nonworking function is OpenXPKI::Server::API::Token::is_token_usable. > So far I haven't found any good way to disable this check. Best work > around so far is to comment out the code and put it "return 1;" > > Is there any way to disable the check through configuration or can I > somehow specify a more suitable check? > > Thanks > Jörn Heissler > > > > _______________________________________________ > OpenXPKI-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openxpki-users > -- Protect your environment - close windows and adopt a penguin!
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
