Go to main content

Managing Authentication in Oracle® Solaris 11.4

Exit Print View

Updated: August 2019
 
 

Enabling an Oracle Solaris System for Smart Card Login

Configuration is the time-consuming part of enabling a system for smart card use. After completing the configuration tasks in Configuring an Oracle Solaris System for Smart Card Login, you enable smart card use by enabling the svc://system/security/pcsc smart card service.

How to Enable Smart Card Authentication

Before You Begin

You have assumed the root role. You have completed the tasks in Configuring an Oracle Solaris System for Smart Card Login. For a review, see Main Smart Card Configuration Tasks.

  1. On the smart card server, import the root CA certificates for OCSP.

    Note - You can skip this step if you are storing certificates and using CRLs locally.

    You configured and tested the certificates in How to Configure and Validate Certificates.

    # pktool import "Root CA certificates" -i CACert.pem

    where CACert.pem is the base-64 format root CA certificate file.

  2. Enable the smart card utility.
    # svcadm enable pcsc