[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PKINIT and login

Love Hörnquist Åstrand wrote:
> 17 apr 2008 kl. 10.39 skrev mkondrin:
>> Dear Heimdal developers and users!
>> Wouldn't it be possible to make Kerberized login to authenticate 
>> users through pkinit mechanisms? For example I have something like:
>> kinit -C FILE:/dev/sdc1 myname
>> where /dev/sdc1 points to usb-stick with pem certificate on it.
>> How this can be done with login program from heimdal package?
>> Thank you in advance!
> The login program doesn't support this right now (it should though).
> Using PAM enable login plus Russ pam-krb5 
> http://www.eyrie.org/~eagle/software/pam-krb5/ it should be possible 
> to use pkinit with login.
> Love
Thanks but for a while "home-grown" login.sh will do the job.

#!/usr/bin/bash echo -n "Insert pem-certificate and hit enter when ready!"
/usr/bin/kinit -C FILE:/dev/sda1 $2 &&  /usr/bin/login -f $2