Using OpenSSH with smartcards Why use OpenSSH with smart ...

ePAPER READ

DOWNLOAD ePAPER

download.gooze.eu

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

Using OpenSSH with smartcards

Using Gnome-keyring with smartcards in Gnome

Gnome includes a advanced password and key manager called Gnome-keyring, which acts as a replacement for ssh-agent.

To use smartcards without problem, you will need at least Gnome 2.6.30 and Gnome-keyring-daemon 2.6.30. Our tests show

that Gnome 2.6.28 keyring-manager is not able to load keys from PKCS#11 smartcards.

After starting Gnome 2.6.30, run gconf-editor to enable PKCS11 and ssh agent:

Type gconf-edit and open /apps/gnome-keyring/daemon-components

$ gconf-editor

Make sure that pkcs11 and ssh are enabled.

In our tests, we found that Gnome 2.6.30 needed some additional information on startup.

Exit Gconfig and return to desktop.

In the main menu bar, select System->Preferences->Startup Applications.

Startup applications preferences dialog is displayed:

Using StrongSwan with smart cards Introduction Prerequisites

OpenVPN with smart cards / crypto tokens HOWTO Introduction ...

ePass2003 developer guide - GOOZE downloading

pfSense installation on ALIX board HOWTO - GOOZE downloading

GNU|Linux Smartcard logon using PAM_P11 - GOOZE downloading

Iceweasel / firefox smartcard HOWTO - GOOZE downloading

Smartcard quickstarter guide Why use smartcards? - GOOZE ...

ePass 2003 review HOWTO Drivers - GOOZE downloading

Windows logon using smartcards - GOOZE downloading

Debian installation on ALIX board HOWTO - GOOZE downloading

Using Putty and WinSCP with smart cards under Windows Installing ...

Using OpenSSH with smartcards Using Gnome-keyring with smartcards in Gnome Gnome includes a advanced password and key manager called Gnome-keyring, which acts as a replacement for ssh-agent. To use smartcards without problem, you will need at least Gnome 2.6.30 and Gnome-keyring-daemon 2.6.30. Our tests show that Gnome 2.6.28 keyring-manager is not able to load keys from PKCS#11 smartcards. After starting Gnome 2.6.30, run gconf-editor to enable PKCS11 and ssh agent: Type gconf-edit and open /apps/gnome-keyring/daemon-components $ gconf-editor Make sure that pkcs11 and ssh are enabled. In our tests, we found that Gnome 2.6.30 needed some additional information on startup. Exit Gconfig and return to desktop. In the main menu bar, select System->Preferences->Startup Applications. Startup applications preferences dialog is displayed: Copyright GOOZE 2010-2011 http://www.gooze.eu 12 / 15

Using OpenSSH with smartcards Although Gnome-Keyring-Daemon is running on startup, you need to inform the daemon to load pkcs#11 and ssh extensions. Find the Certificate and Key storage icon. Make sure it is enabled: Copyright GOOZE 2010-2011 http://www.gooze.eu 13 / 15

Page 1 and 2: Using OpenSSH with smartcards Publi
Page 3 and 4: Using OpenSSH with smartcards You s
Page 5 and 6: Using OpenSSH with smartcards Do no
Page 7 and 8: Using OpenSSH with smartcards This
Page 9 and 10: Using OpenSSH with smartcards franc
Page 11: Using OpenSSH with smartcards Using
Page 15: Using OpenSSH with smartcards Enter

Using OpenSSH with smartcards Why use OpenSSH with smart ...

Create successful ePaper yourself

Delete template?

Save as template?