On Jul 22, 2005, at 7:34 AM, Vincent WYON wrote:
Hi,
My company 'd like to implement their proper
logon on mac osX (from panther). So, I'll have to change the logonwindow and
his standard authentification like the cryptocard society
implemented....
We have some stand alone powerbook, and we
don't want to use kerberos.
The problem is that there are only very
few documents telling it ("authorization_ref.pdf",
"AuthorizationPluginRef.pdf", "AuthServicesObjCRef.pdf"), and i do not know
how to begin.....
I know that I implement a bundle
to place in SecurityAgentPlugins directory,
but how to implement it ?????
I know that I modify the
etc/authorization file, but what I change in it ?????
Can anybody help me ??? Is there any other
document ???
Thanks for your answers
vince
The engineers who work on this stuff hang out on the apple-cdsa mailing
list (CDSA is Common Data Security Architecture):
The short answer is that you want to upgrade to Tiger. Smart card login
is built in on Tiger, so you don't need to write a new authorization plugin to
handle smart cards on Tiger like you would need to do on Panther.
Tiger accesses smart cards using small processes called tokends that
encapsulate the details of accessing a card. Support for the DOD CAC card, the
Belgian Personal Identity Card, and the Japanese JPKI card ships with Tiger.
Other cards will require a tokend to be developed, but this is a simple
project to implement.
Support for writing tokends is available either through Apple Developer
Technical Support (DTS) or the apple-cdsa mailing list.
There is preliminary documentation available for building a tokend from
the Darwin sources. Just send your request to DTS at <
email@hidden>. The documentation will be
sent without costing you a support incident, but technical support from DTS
beyond that will most likely require a support incident.