I disagree.
First certificate tells you nothing, usually you have several
(signing, authentication, decryption).
First is random, and random is bad.
After a while the old certificates also expires and you have new ones
added to the card.
It would be not wise to enforce your card scheme on others.
From: Oliver Dumschat-Hötte
When using smartcards, you have to supply the (not very handy) pkcs11-id in
the config file or through the management interface.
Normaly, there is only one smartcard at one time in use, so it is ok to
automaticly set the first appearing smartcard id as pkcs11-id.
This
