Chapter 3 Setting Up a Card Reader (Tasks)

This chapter describes the procedures for setting up and maintaining card readers.

This is a list of the step-by-step instructions in this chapter.

• "How to Add a New Card Reader (Console)"

• "How to View or Modify Card Reader Properties (Console)"

• "How to Add an iButton Reader (Command Line)"

• "How to Add a Sun SCRI External Card Reader 1 (Command Line)"

• "How to Add a Sun SCRI Internal Card Reader 1 (Command Line)"

• "How to Remove a Card Reader (Console)"

• "How to Remove a Card Reader (Command Line)"

Setting Up a Card Reader (Task Map)

The following table describes all the tasks needed to set up and maintain a card reader.

Table 3-1 Setting Up a Card Reader (Task Map)

Task	Description	Instructions
1. Add a Card Reader	Add a card reader on each system that will use smart cards.	"How to Add a New Card Reader (Console)", or "How to Add an iButton Reader (Command Line)", or "How to Add a Sun SCRI External Card Reader 1 (Command Line)", or "How to Add a Sun SCRI Internal Card Reader 1 (Command Line)"
2. View or Modify Card Reader Properties	Optional View or change properties for card readers.	"How to View or Modify Card Reader Properties (Console)"
3. Remove a Card Reader	Optional If a card reader is no longer needed, you can use the smartcard command to remove the card reader support and then physically remove the card reader from the system.	"How to Remove a Card Reader (Console)" or "How to Remove a Card Reader (Command Line)"

Setting Up a Card Reader

Solaris Smart Cards supports two external card readers, the iButton and the Sun SCRI External Reader 1, and an internal card reader, the Sun SCRI Internal Card Reader 1.

The following table shows the supported card readers and the corresponding values you need to supply to add them: card terminal factory name and reader model name.

Table 3-2 Card Readers Supported

Reader Type	Card Terminal Factory Name	Reader Model Name
Sun SCRI External Card Reader 1	com.sun.opencard.terminal.scm.SCMStc.SCMStcCardTerminalFactory	SunSCRI
iButton	com.ibutton.oc.terminal.jib.iButtonCardTerminalFactory	DS1402
Sun SCRI Internal Card Reader 1	com.sun.opencard.terminal.scm.SCMI2c.SCMI2cCardTerminalFactory	SunISCRI

Adding a Card Reader (Console)

With the SmartCard Console, you set up a card reader by selecting Card Readers from the Navigation pane. This option lets you:

• Add a new card reader

• View and modify properties set up for an already a previously configured card reader

How to Add a New Card Reader (Console)

See "How to Start the SmartCard Console (Command Line)" for help on starting the SmartCard Console.

1. (Optional) Ensure that you have already physically attached the external card reader to the system.

   Physically attach the external smart card reader to the serial port, following instructions in the card reader documentation.

2. Click Card Readers on the Navigation pane.

3. Double-click Add Reader.

4. Double-click the type of card reader you want to add.

   The CardReaders: SunCardReader dialog box is displayed.

5. Select the Basic Configuration folder tab.

6. Click the down arrow under Device Port.

7. Click the port that the card reader is attached to.

8. Click OK.

9. Restart ocfserv, if prompted.

Viewing or Modifying Card Reader Properties (Console)

The Basic Configuration folder for your card reader includes these properties:

• Unique Card Terminal Name - Contains a unique name to identify the card reader (called the user_friendly_reader name in the command-line procedures for adding a card reader)

• Model Name - Contains the manufacturer's model name for the card reader you selected from the Add Reader dialog box (called the card_reader_model name in Table 3-2)

• Device Port - Contains the fully-qualified device name for the port where the reader is attached, for example /dev/cua/b for serial port b

The Advanced Configuration folder contains the card_terminal_factory_name for the card reader, as supplied by the manufacturer. You do not need to change this name unless the manufacturer changes the name for a newer release of the card reader.

How to View or Modify Card Reader Properties (Console)

Use this procedure to view or modify basic properties for your card reader.

1. Type a unique name for your card reader in the Unique Card Terminal Name field, or accept the default name.

   If you have more than one card reader of the same type attached to the system, you must type a unique card terminal name for each reader.

2. Type the Model Name for the card reader, only if you are using a newer version of the card reader than the one with the Model Name displayed.

3. Click on the arrow and select the appropriate device path.

4. Restart ocfserv, if prompted.

Adding a Card Reader (Command Line)

You add a card reader by using the smartcard -c admin command with the following syntax:

smartcard -c admin -t terminal -j card_terminal_factory_name -x add -d device_pathname -r user_friendly_reader_name -n card_reader_model

-c admin	Indicates that you are viewing or modifying OCF properties.
-t terminal	Indicates that you are about to configure a card reader.
-j card_terminal_factory_name	Defines the card terminal factory name of the card reader type. See the specific Card Terminal Factory Name in the procedures below.
-x add	Indicates that you want to add a card reader.
-d device_pathname	Specifies the device port where you have plugged in the card reader.
-r user_friendly_reader_name	Specifies a unique name for the reader.
-n reader_model_name	Designates the model name of the card reader. See the specific card reader model name in the procedures below.

Refer to the smartcard(1M) man page for more information.

How to Add an iButton Reader (Command Line)

1. Become superuser on the system where you are attaching the card reader.

2. Ensure that you have already physically attached the external card reader to the system.

   Physically attach the external smart card reader to the serial port, following instructions in the card reader documentation.

3. Add the iButton reader by typing the following command on one line. For example:

   # smartcard -c admin -t terminal -j com.ibutton.oc.terminal.jib.iButtonCardTerminalFactory -x add -d /dev/cua/b -r MyButtonReader -n DS1402

   -c admin	Indicates that you are viewing or modifying OCF properties.
   -t terminal	Indicates you are configuring a card reader.
   -j com.ibutton.oc.terminal.jib.iButtonCardTerminalFactory	Identifies the card terminal factory name of the iButton reader.  Be careful to type the card terminal factory name following -j option exactly as shown in the procedure above, with no spaces or returns between characters.
   -x add	Indicates that you want to add a card reader.
   -d /dev/cua/b	Defines the device port where the card reader is attached.
   -r MyButtonReader	Specifies a unique name for the iButton reader.
   -n DS1402	Indicates the model name for the iButton card reader.

4. Stop ocfserv.

   # pkill ocfserv

   The ocfserv process is restarted the next time you use the SmartCard Console or the smartcard command.

How to Add a Sun SCRI External Card Reader 1 (Command Line)

1. Become superuser on the system where you are attaching the card reader.

2. Ensure that you have already physically attached the external card reader to the system.

   Physically attach the external smart card reader to the serial port, following instructions in the card reader documentation.

3. Add the Sun SCRI External Card Reader 1 by typing the following command on one line. For example:

   # smartcard -c admin -t terminal -j com.sun.opencard.terminal.scm.SCMStc.SCMStcCardTerminalFactory -x add -d /dev/cua/b -r MyExternalReader -n SunSCRI

   -c admin	Indicates that you are viewing or modifying OCF properties.
   -t terminal	Indicates you are configuring a card reader.
   -j com.sun.opencard.terminal.scm.SCMStc.SCMStcCardTerminalFactory	Is the card terminal factory name of the Sun SCRI External Card Reader 1.  Be careful to type the card terminal factory name following -j option exactly as shown in the procedure above, with no spaces or returns between characters.
   -x add	Indicates that you want to add a card reader.
   -d /dev/cua/b	Defines the device port where the card reader is attached.
   -r MyExternalReader	Specifies a unique name for the SCRI External Card Reader 1.
   -n SunSCRI	Indicates the model name for the SCRI External Card Reader 1.

4. Stop ocfserv.

   # pkill ocfserv

   The ocfserv process is restarted the next time you use the SmartCard Console or the smartcard command.

How to Add a Sun SCRI Internal Card Reader 1 (Command Line)

1. Become superuser on the system where you are attaching the card reader.

2. Add the Sun SCRI Internal Card Reader 1 by typing the following command on one line. For example:

   # smartcard -c admin -t terminal -j com.sun.opencard.terminal.scm.SCMI2c.SCMI2cCardTerminalFactory -x add -d /dev/scmi2c1 -r MyInternalReader -n SunISCRI

   -c admin	Indicates that you are viewing or modifying OCF properties.
   -t terminal	Indicates you are configuring a card reader.
   -j com.sun.opencard.terminal.scm.SCMI2c.SCMI2cCardTerminalFactory	Is the card terminal factory name of the Sun SCRI Internal Card Reader 1.  Be careful to type the card terminal factory name following -j option exactly as shown in the procedure above, with no spaces or returns between characters.
   -x add	Indicates that you want to add a card reader.
   -d /dev/scmi2c1	Defines the device port where the card reader is attached. For example, /dev/scmi2cn, where n in scmi2cn is the nth SunISCRI reader on the system.
   -r MyInternalReader	Specifies a unique name for the SCRI Internal Card Reader 1.
   -n SunISCRI	Indicates the model name for the SCRI Internal Card Reader 1.

3. Stop ocfserv.

   # pkill ocfserv

   The ocfserv process is restarted the next time you use the SmartCard Console or the smartcard command.

Removing a Card Reader

You might need to remove an external card reader from a system, for example, when a user no longer needs to use a smart card, or when you want to move the reader to another system. Before unplugging the reader, you first must logically remove the reader.

How to Remove a Card Reader (Console)

See "How to Start the SmartCard Console (Command Line)" for help on starting the SmartCard Console.

1. Click Card Readers on the Navigation pane.

2. Select the card reader in the Console pane that you want to remove.

3. Select Remove Terminal from the Action menu.

4. Click OK to remove the card reader.

5. Restart ocfserv, if prompted.

How to Remove a Card Reader (Command Line)

1. Become superuser on the system with the card reader to be removed.

2. Remove the card reader.

   # smartcard -c admin -t terminal -r user_friendly_reader_name -x delete

3. (Optional) Unplug the external card reader from the port.

4. Stop ocfserv.

   # pkill ocfserv

   The ocfserv process is restarted the next time you use the SmartCard Console or the smartcard command.