On Fri, 2020-03-20 at 12:10 +0100, Noss Benoit wrote: > Hello, > I want to use openconnect as an alternative to cisco anyconnect on my > Windows7 64bits computer > I have a USB smartcard reader and I want to know if there is a > possibility to make Openconnect read my certificate on the card. > Is there a documentation on this subject I can download? > My smartcard reader is a gemalto model Yes, if you have a PKCS#11 driver library for your smartcard then OpenConnect can use that. As with Linux systems, it needs to be installed "correctly", i.e. registered with p11-kit. More details at http://www.infradead.org/openconnect/pkcs11.html If you don't already have a PKCS#11 driver for your card, maybe OpenSC supports it? https://github.com/OpenSC/OpenSC/wiki/OpenSC-Windows-installer Also, if your driver is integrated into the Windows certificate store then I believe that GnuTLS can use it through 'system keys': https://www.gnutls.org/manual/html_node/Application_002dspecific-keys.html
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ openconnect-devel mailing list openconnect-devel@xxxxxxxxxxxxxxxxxxx http://lists.infradead.org/mailman/listinfo/openconnect-devel
