Do the following to enable Solaris Smartcard usage on a system. A user must use an accepted smart card for the system and might need to type a PIN to successfully log in to this system after the desktop is enabled for Smartcard.
Become superuser on each system to be used in Smartcard operations.
Stop the desktop.
# /etc/init.d/dtlogin stop |
Turn on Solaris Smartcard operations.
# smartcard -c enable |
Restart the desktop.
# /etc/init.d/dtlogin start |
When CDE is configured for Smartcard login, /etc/pam.conf is modified to include pam_smartcard. For example, when smartcard -c enable is executed, the following lines are inserted at the top of the auth stacks for dtlogin and dtsession:
dtlogin auth requisite pam_smartcard.so dtsession auth requisite pam_smartcard.so |