Hi!
On 3/19/08, Peter Koch wrote:
> We only use smartcard readers with secure pin entry.
Nice! You are the first one to confirm that protected authentication
actually works!
I never had the hardware to test it out.
> Where can I find more information about the management interface?
> I agree
Hello,
I update the kde script [1] to handle these new commands.
It presents the user with friendly a list of certificates.
With some customization this can also be modified to execute
customized non interactive authentication.
Peter, I don't understand how you currently specify the passphrase fo
Hello,
In your case I thought using a simple perl script installed using
servany, this script can provide the certificate and passphrase
automation during computer startup.
A sample perl scripts are available at [1].
Anyway... The proper solution for Windows login is to write a RAS provider
that
On 3/17/08, Christophe Vandeplas wrote:
> I'll have a deeper look at your management patch, maybe I can find a
> way to add the pkcs11-match principle in your code with almost no
> extra complexity and redundant code.
> Do you think it's worth the effort? Or better wait for the results and
>
On 3/17/08, Alon Bar-Lev wrote:
> On 3/17/08, Christophe Vandeplas wrote:
> > > So back to my original idea... Use the management interface to prompt
> > > the user to select a certificate.
> >
> >
> > What does that mean for the end-user? If I understand it correctly the
> > user will
On 3/17/08, Christophe Vandeplas wrote:
> > So back to my original idea... Use the management interface to prompt
> > the user to select a certificate.
>
>
> What does that mean for the end-user? If I understand it correctly the
> user will need to do the following:
> - start tunnel/openvpn
>
> So back to my original idea... Use the management interface to prompt
> the user to select a certificate.
What does that mean for the end-user? If I understand it correctly the
user will need to do the following:
- start tunnel/openvpn
- open webbrowser and select certificate
- enter key (wher
Hello,
I did not realize how many people depend on the low-level PKCS#11 properties.
I thought I prospone this to next OpenVPN version, but I see more an
more people need "single configuration file" option.
I first thought to create a filter similar to what you suggest... But
users would like to
Hi all,
From the mailinglist I'm not the first one that wanted dynamic key-id
detection for pkcs11 authentication.
I first started to write a script, but it had to be platform independent.
Working on two scripts (bash and vbs) was stupid as they really became to
big and created extra securi
