Consider the situation where one doesn't authenticate into the Mac
with a smartcard -- just a normal user/pass combo. They then want to
use the certificate on the smartcard to authenticate to a remote
system via SSH.
( Scenario being a personal system with a work-issued smartcard for
work authentication )
This is feasible on a Linux system, using the '-I' argument to ssh.
Attempting that tactic using the Centrify tokend pkcs11.so library
doesn't work...
ssh -I /usr/local/share/centrifydc/lib/pkcs11/tokendPKCS11.so remote-host
Under linux, one gets prompted for the SC passphrase/pin.
Under OSX, no such prompt appears, implying its not a valid library.
Ideas?
with a smartcard -- just a normal user/pass combo. They then want to
use the certificate on the smartcard to authenticate to a remote
system via SSH.
( Scenario being a personal system with a work-issued smartcard for
work authentication )
This is feasible on a Linux system, using the '-I' argument to ssh.
Attempting that tactic using the Centrify tokend pkcs11.so library
doesn't work...
ssh -I /usr/local/share/centrifydc/lib/pkcs11/tokendPKCS11.so remote-host
Under linux, one gets prompted for the SC passphrase/pin.
Under OSX, no such prompt appears, implying its not a valid library.
Ideas?