Go to main content

Managing Authentication in Oracle® Solaris 11.4

Exit Print View

Updated: November 2020

How to Log In Remotely by Using ssh With Smart Card Authentication

Before You Begin

You have a Secure Shell server that is configured for smart cards. You have inserted a smart card into the CCID-compliant smart card reader that is attached to a PC or workstation.

  1. Open a terminal window.
  2. Use ssh to reach the remote server.
    • If you are connecting from an Oracle Solaris Secure Shell client to an Oracle Solaris Secure Shell server, type the following command:
      $ ssh username@SSH-server
    • If either the Secure Shell client or server are not Oracle Solaris, provide the full path to the PKCS #11 library.

      Confirm with your administrator which cryptographic module to use.

      $ ssh -I /usr/lib/libcackey.so username@SSH-server
      $ ssh -I /usr/lib/libcoolkeypk11.so username@SSH-server

    The terminal displays the progress of smart card authentication.

    Smartcard authentication starts
    Smart card found.
    Welcome LNAME.FNAME.ID!
  3. Type your smart card PIN.
    Smart card PIN: nnnnnnnn
    • If you typed the correct PIN, a "verifying certificate" message displays and you are logged in.

    • If you typed the wrong PIN, an error message displays: Error 2320: Wrong smartcard PIN. Type the correct PIN when smart card authentication restarts.

  4. To quit the ssh session, type Control-D.