I validated the pin for the HSM token with: # pkcs11-tool --module /usr/safenet/lunaclient/lib/libCryptoki2_64.so --login --test --pin "E9J7-Pb9F-XXXX-XXXX" Using slot 0 with a present token (0x0) C_SeedRandom() and C_GenerateRandom(): seems to be OK Digests: all 4 digest functions seem to work SHA-1: OK SHA256: OK ERR: C_Digest() didn't return CKR_OK for a NULL output buffer, but CKR_OPERATION_NOT_INITIALIZED (0x91) ERR: digest operation ended prematurely Signatures (currently only for RSA) testing key 0 () -- non-RSA, skipping testing key 1 () -- non-RSA, skipping testing key 2 () -- non-RSA, skipping testing key 3 () -- non-RSA, skipping testing key 4 () -- non-RSA, skipping testing key 5 (caSigningCert cert-pki-ca) -- non-RSA, skipping testing key 6 () -- non-RSA, skipping testing key 7 () -- non-RSA, skipping testing key 8 () -- non-RSA, skipping Signatures: no private key found in this slot Verify (currently only for RSA)
So I think I need to do some additional installation?! -- _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
