Re: [Fed-Talk] PIV-II usage on Macs
Re: [Fed-Talk] PIV-II usage on Macs
- Subject: Re: [Fed-Talk] PIV-II usage on Macs
- From: "Timothy J. Miller" <email@hidden>
- Date: Thu, 12 Feb 2009 15:15:02 -0600
Gillett, Thomas J. (CMS/CTR) wrote:
I have been following the “Smart card set up guide” from apple in an
attempt to Set up our Macs (10.5.6) for PIV-II access. In order to
Enable the smart card login I have edited the /etc/authorization file as
directed. But when a card is inserted the login window does not change
to one requesting a PIN , all accounts still ask for a user/password.
The card reader appears to be functioning I can read the certs on the
card and unlock it from keychain but inserting the card does not affect
login behavior. Any Ideas?
Undo all that. That was for older versions. All you need to do is:
$ sc_auth hash
This lists the certs on the card and their hashes.
$ sudo sc_auth accept -u username -h hashvalue
And you're done.
If anyone knows how to make FileVault play nice with a smartcard enabled
account, I'd like to know.
-- Tim
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden