|
|
On Tuesday 05 December 2006 19:07, Alon Bar-Lev wrote: > I remember from far in the past that eToken had a different PIN for > PKCS#11, and changing the PIN via the eToken GUI solved this... Can > you please try? > Also please try: > >pkcs11-tool.exe --module eTpkcs11.dll --list-objects --login > The problem should be in authentication, not in accessing the public data. Yes, that was one problem :) After having done some tests using openssl on Windows, the opensc-openssl-engine and the Aladdin etpkcs11.dll i've decided to give Linux and the Aladdin middleware a last try, since i would like to manage the PKI using Linux: - my first setup using the Aladdin Linux middleware was not successful, because of a "hanging" etkcinit respectively etkcdump. The problem was an old version of libpcsclite1 - after installing a newer release and creating a symlink from libpcsclite-1.so to libpcsclite-0.so (a component of the Linux Middleware needs the "old" library) the problem was gone, and openssl was able to use the opensc-pkcs11-engine and the proprietary Aladdin pkcs11-module. After formatting the token using the etkcinit-application, generating a key and storing a certificate on the token, even OpenVPN running on Windows was able to enumerate the objects on the token. (using etpkcs11.dll of course) After that step the eToken worked like a charm, and is fully interoperable among Windows and Linux. So my last wish is to instruct OpenVPN to not ask for a pin, since i would like to use the OpenVPN-GUI, which (at the moment) isn't able to request one via a GUI dialog. Maybe this is possible by simply not supplying a user pin on token initialization, but i've to try that. After all, thank you very much, Alon for your help! If you need a tester for new implementations or other interoperability details i would be glad to help. Best Regards, Robert ______________________ OpenVPN mailing lists https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-12/msg00060.html on line 219 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-12/msg00060.html on line 219 |