ssh-keygen with libpkcs11.so can't work (Nan)

Martin Paljak martin at paljak.pri.ee
Sun Sep 26 02:16:31 EST 2010


>   4. ssh-keygen with libpkcs11.so can't work (Nan)

> I searched on my ubuntu server but found no libpkcs11.so.  Also, I searched
> online, and didn't find too much help.
> Do I need to download the source of pkcs11, then compile and install on my
> mahine?  If yes, where could I get the source.
> Or I misunderstood the new feature, and it should not be used in this way?
You need to specify the path to your token PKCS#11, instead of
specifying the CA key in the file system, the token based key is used.

If you don't have a smart card, you should not use -D but use -s with
a file based key instead.


More information about the openssh-unix-dev mailing list