ssh-keygen with can't work

Nan seifer1983 at
Sat Sep 25 16:58:24 EST 2010


I'm trying the new feature "ssh-keygen(1) now supports signing certificate
using a CA key that has been stored in a PKCS#11 token".
According to the manpage,  I should use "-D" option.  And I had a problem
with this option.

root at ubuntu-desktop[/home/adam/temp7]#ssh-keygen -s -D -I key_id
dlopen failed: cannot open shared object file: No
such file or directory
cannot read public key from pkcs11

I searched on my ubuntu server but found no  Also, I searched
online, and didn't find too much help.
Do I need to download the source of pkcs11, then compile and install on my
mahine?  If yes, where could I get the source.
Or I misunderstood the new feature, and it should not be used in this way?

Thanks in advance.


More information about the openssh-unix-dev mailing list