[Samba] Smart card logon
Asier Baranguán
abaranguan at elpagestion.com
Mon Feb 25 11:06:07 GMT 2008
Andrew Bartlett escribió:
>>> OK, I wasn't particularly looking at the client end, but this has been
>>> known to work. The group I'm part of at Red Hat demo'ed this working
>>> while showing off using Red Hat certificate system.
>> What were you looking for? server side? I mean, integration in server side between a CA
>> and the server?
>
> Quite simply: What do I have to do to make a WinXP client accept a
> smartcard for login, when in a Samba4 domain.
Well, then we have the same goal :)
> I have a CA and tokens, but not much knowledge on how to use them... (I
> have access to Red Hat's proprietary product & token, as well as an
> Aladdin token and software).
Well, hardware is not the problem for me. I have Aladdin, Oberthur and iKEY usb tokens
(perhaps some more), and some smartcards (both cards and usb readers).
>>> I can help you with this, and perhaps you can help me making Samba4 as a
>>> server and KDC support this, for windows clients.
>> That would be great, I'm very interested in this setup.
>
> I'll see what I can find out for you, but have you tried out Fedora 8's
> smartcard integration? With the right pcsc drivers loaded, it should
> mostly be a matter of configuration with system-config-auth.
I work with Debian (etch, sarge) based servers, but no, I haven't prepared that setup.
This week I'll try to setup a local smartcard logon in a Debian server. Then I'll go with
a Samba4 Alpha2 DC to begin the tests.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: abaranguan.vcf
Type: text/x-vcard
Size: 388 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba-technical/attachments/20080225/dd61bbc3/abaranguan.vcf
More information about the samba-technical
mailing list