> -----Original Message-----
> From: centos-bounces@xxxxxxxxxx
> [mailto:centos-bounces@xxxxxxxxxx] On Behalf Of m.roth@xxxxxxxxx
> Sent: Wednesday, December 15, 2010 13:55
> To: CentOS mailing list
> Subject: Smart cards, mostly solved
>
> So, it *seems* to be working, pretty much. I needed to
> install opensc, openct pcsc-lite, pcsc-lite-openct, and
> ctapi-common will be installed as a dependency.
Awesome.
>
> I *removed* coolkey and esc, which depended on it. 100% of
> the time, they misidentifed the new/current US federal ID
> PIV-II cards as coolkey cards, and popped up this "phone
> home" window, then a "manage smartcards" window.
>
> Without them, I also don't see an icon in the taskbar... but
> using ssh-add (actually, my manager built openssh, opensc and
> openct from current source, 5.4? 5.5?, and renamed stuff to
> piv-....), so I do piv-ssh-add -s opensc-pkcs11.so, and it
> adds the card. Before you do that... configure
> /etc/pam_pkcs11/pam_pkcs11.conf so that # Filename of the
> PKCS #11 module. The default value is "default"
> use_pkcs11_module = opensc;
> and you may have to decide on a mapper. Then restart pcscd,
> and you should be good to go.
>
> At any rate, no wrong/confusing windows, and logins work. I
> do note that if I try to use my regular password, I need to
> pull my card out of the reader.
>
I am going to try to duplicate this. With my CAC I got in October (should be a
PIV II).
> On a related note, from WinDoze, there's a version of putty
> that works
> <http://www.risacher.org/putty-cac/putty-cac-experimental/wind
ows/?C=N;O=D>.
> Once installed, when you bring up the putty window, click on
> expand ssh, then click on pkcs. The one thing needed is the
> right dll, which, if you're running a 64 bit system, and
> using, say, ActivIdentity, c:\Program Files
> (x86)\ActivIdentity\ActivClient\acpkcs211.dll
>
> MAKE SURE you get the right .dll; if you're running 32 bit,
> it will be the other one.
>
Going to try this right now.
> mark
>
> _______________________________________________
> CentOS mailing list
> CentOS@xxxxxxxxxx
> http://lists.centos.org/mailman/listinfo/centos
>
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
- -
- Jason Pyeron PD Inc. http://www.pdinc.us -
- Principal Consultant 10 West 24th Street #100 -
- +1 (443) 269-1555 x333 Baltimore, Maryland 21218 -
- -
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
This message is copyright PD Inc, subject to license 20080407P00.
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
