Re: Use safenet etoken with ssh-agent

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



On Sat, 13 Sep 2014, Benjamin Fras wrote:

> Hi,
> 
> we are using eToken Pro Anywhere to connect with ssh. Basically this is
> working just fine, if you use ssh -I /lib/libeToken.so.8. But I need to be
> able to add the eToken to the ssh-agent due to ForwardAgent-Option. In our
> setup we use ssh-jumphosts from which you can connect to other hosts that are
> isolated from the workstation's network.
> 
> Unfortunately ssh-add -s /lib/libeToken.so.8 does not work. After entering the
> passphrase for PKCS#11, the operation fails with "Could not add card:
> /lib/libeToken.so.8". Is there any option to get mores details from ssh-add? I
> didn't find any debug mode I could turn on.

No, because all of the action happens in ssh-agent. You can run ssh-agent
in debugging mode though:

$ ssh-agent -d
SSH_AUTH_SOCK=/tmp/ssh-w2Q7ZYWsIZR5/agent.30154; export SSH_AUTH_SOCK;
echo Agent pid 30154;
$ env SSH_AUTH_SOCK=/tmp/ssh-w2Q7ZYWsIZR5/agent.30154 \
  ssh-add -s /lib/libeToken.so.8

-d
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev




[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux