Filewatcher File Search File Search
Catalog
Content Search
» » » » » »

pam_pkcs11

PKCS #11/NSS PAM login module

This Linux-PAM login module allows a X.509 certificate based user authentication. The certificate and its dedicated private key are thereby accessed by means of an appropriate PKCS #11 module. For the verification of the users' certificates, locally stored CA certificates as well as either online or locally accessible CRLs and OCSP are used. This version uses NSS to validate the Certificates and manage the PKCS #11 smartCards. Additional included pam_pkcs11 related tools - pkcs11_eventmgr: Generate actions on card insert/removal/timeout events - pklogin_finder: Get the loginname that maps to a certificate - pkcs11_inspect: Inspect the contents of a certificate
Homepage:
Package version:0.5.3
Architecture:i386
Distribution:CentOS
Filename:pam_pkcs11-0.5.3-26.el5.i386.rpm

/usr/share/doc/pam_pkcs11-0.5.3/README

This is the README of the PKCS #11 PAM Login Module
======================================================================

Release: 0.4.1
Authors:  Mario Strasser <mast@gmx.net>
	  Juan Antonio Martinez <jonsito@teleline.es>

This Linux-PAM login module allows a X.509 certificate based user 
login. The certificate and its dedicated private key are thereby
accessed by means of an appropriate PKCS 
more»

/usr/share/doc/pam_pkcs11-0.5.3/README.autologin

EXTRACTING LOGIN FROM CERTIFICATE HOWTO
---------------------------------------

Starting at pam_pkcs11-0.4.2 a new feature is provided: pam-pkcs11 can
deduce user name from certificate, without login prompt.

This is done when pam_get_user() call returns null or empty string.
In this case, pam-pcks11 use the module mapper "find" feature instead
of normal "match".

If the finder list returns ok, e
more»

/usr/share/doc/pam_pkcs11-0.5.3/README.mappers

What is a cert mapper?
----------------------

When an X509 Certificate is provided, there are no direct way to map
a cert to a login. With a certificate we can check validity and
revocation, but user mapping depends entirely on the certificate content.

So we need a configurable, stackable, and definable way to specify
cert-to-user mapping.

pam-pkcs11 cert mappers provides several functions:

1-
more»

/usr/share/doc/pam_pkcs11-0.5.3/NEWS

12- Sep 2005
	- Finally pam_pkcs11-0.5.3 is out.
	- New mapper API and Docs
	- Full documentation av
more»

/usr/share/man/man1/pkcs11_eventmgr.1.gz

pkcs11_eventmgr(1)        PAM-pkcs11 tools        pkcs11_eventmgr(1)



NAME
       SmartCard PKCS#1
more»

/usr/share/man/man1/pkcs11_inspect.1.gz

pkcs11_inspect(1)            PAM PKCS#11           pkcs11_inspect(1)



NAME
       pkcs11_inspect -
more»

/usr/share/man/man1/pklogin_finder.1.gz

pklogin_finder(1)            PAM-PKCS#11           pklogin_finder(1)



NAME
       pklogin_finder -
more»

/usr/share/man/man8/pam_pkcs11.8.gz

pam_pkcs11(8)        System Administration tools       pam_pkcs11(8)



NAME
       pam_pkcs11  -  P
more»

Browse inside pam_pkcs11-0.5.3-26.el5.i386.rpm

         [DIR]etc/ (1)  65535+ mirrors
1.20 KB2014-11-29HEADER  view  74 mirrors
         [DIR]lib/ (1)  65535+ mirrors
         [DIR]usr/ (3)  65535+ mirrors

Download pam_pkcs11-0.5.3-26.el5.i386.rpm

Results 1 - 1 of 1
Help - FTP Sites List - Software Dir.
Search over 15 billion files
© 1997-2016 FileWatcher.com