Solaris Smartcard Administration Guide

ProcedureTo Set Up a User Profile (Console)

Use this procedure to specify the user name and password that is associated with the application (dtlogin) for the card being set up. The following is Smartcard Console instructions.

  1. Verify that the ocfserv daemon is enabled.

    The following command provides the status of the service.

    % svcs network/rpc/ocfserv

    Note –

    Before you make any changes to Smartcard, you must make sure that the ocfserv daemon is enabled.

  2. (Optional) If necessary, as root, enable the ocfserv daemon.

    # svcadm enable network/rpc/ocfserv
  3. Insert the smart card that you want to configure into the card reader.

  4. Select Configure Applets in the Navigation pane.

    The icon for the type of card in the reader is displayed in the Console pane.

  5. Double-click the icon in the Console pane.

    The Configure Applets dialog box is displayed. You can also display the Configure Applets dialog box by selecting the icon in the Console pane and choosing Properties in the Action menu.

  6. Select SolarisAuthApplet in the Configure Applets dialog box.

    The SolarisAuthApplet configuration folders appear on the right side of the dialog box. The folders are represented by tabs labeled “PIN” and “User Profiles.” For some smart cards, “RSA Key” and “PKI Cert” folders might also be represented. Only User Profiles changes are described here. See To Change the PIN on a Card (Console) for PIN change information.

  7. Select the User Profiles tab in the Configure Applets dialog box.

  8. Type dtlogin in the User Profile Name field.

    dtlogin represents the CDE desktop.

  9. Type a user name in User Name field.

    The name is the user name of the person to use the card. The user name cannot be more than eight characters long.

    Note –

    Click the Get button to determine the current user name that is associated with the card. You need to type the PIN to get the current user name or to change the user name or password.

  10. Type password in Password field.

    The password is the password that is associated with the user name that was typed in a previous step. The password must correspond to the user's password based on the search order for passwd in /etc/nsswitch.conf: LDAP, NIS, NIS+, or local files. The password cannot be more than eight characters long.

    Note –

    If the user's password is changed after you have configured the smart card, you or the user must repeat these steps. The new password on the smart card is not updated automatically.

  11. Click the Set button.

    The Set User Profile popup is displayed, asking for the current PIN.

  12. Type the PIN and click OK.

    The new user name and new password are stored on the card.

  13. Click OK to dismiss the dialog box.