[EXTERNAL] kinit using smartcard or tpm cert for pkinit
Nebergall, Christopher
cneberg at sandia.gov
Tue Apr 1 18:13:46 EDT 2014
It supports pkcs11.
http://web.mit.edu/Kerberos/krb5-1.12/doc/admin/conf_files/krb5_conf.html?highlight=pkcs11
-Christopher
-----Original Message-----
From: kerberos-bounces at mit.edu [mailto:kerberos-bounces at mit.edu] On Behalf Of Huang, Peter (HP-IT Palo Alto)
Sent: Tuesday, April 01, 2014 7:52 AM
To: kerberos at mit.edu
Subject: [EXTERNAL] kinit using smartcard or tpm cert for pkinit
Have anyone done testing pkinit pre-auth using cert on smartcard (may be thru openssl pkcs11) or TPM? The current instructions only detail cert on the file system but not on smartcard or tpm. It would be nice that kinit will have a switch that access the private key on the secure devices complete the pre-auth sequence.
-peter huang
Hewlett-Packard Company
3000 Hanover Street
Palo Alto, CA 94304
Tel (650)236-3590
________________________________________________
Kerberos mailing list Kerberos at mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
More information about the Kerberos
mailing list