Private-Key Property
To use this feature of Solaris Smart Cards, you must have a public-key infrastructure (PKI) set up at your site. See "How to Create a Private Key on a Smart Card (Command Line)" for step-by-step instructions on creating a private key on a smart card.
Note -
You can store only one private key on a smart card.
How the Private Key Property Works
After authenticating the PIN and password on the smart card, ocfserv copies the file specified in key_file_name to the smart card. Thereafter, the private key is available on the card for signing data as an additional form of authentication. When the user runs a command for signing data, such as amisign from AMI, the command uses the private key on the user's smart card to create the signed data.
Depending on your site's policies, you might want to delete the user's private-key file from the system where it is stored. Thereafter, the private key exists only on the user's smart card.
- © 2010, Oracle Corporation and/or its affiliates