USB token question

Help
2014-07-21
2014-07-22
  • Kunszt Arpad
    Kunszt Arpad
    2014-07-21

    Hi!

    I'm new to EJBCA and I'm a little lost.

    I want to use an USB token (ePass2003) for the some of the client certificates. Can EJBCA handle this? I managed to EJBCA see the token plugged in the server, but nothing more. Is it even necessary on the server? Or the client has to access the token? How?

    I'm a little confused how to achieve this. I have a little PKI knowledge, I can use the USB tokens, but this is the first time I try EJBCA.

    Sorry for my bad English.

    Any help appreciated!

    Thanks!

    Arpad Kunszt

     
  • Yes EJBCA can handle tokens for client certificates, this is a very common scneario.

    In order to use a token for the client you do not need to have any tokens on the server side, i.e. do not plug your token into the server.

    For small scale/testing, use your token on the client and use normal brrowser enrollmentputting the keys/certificate on your token.

    For larger scale token usage, use a token management system like any from:
    http://ejbca.org/complementary.html#Token%20Management

    Cheers,
    Tomas


    Save time and money with an Enterprise support subscription. Please see www.primekey.se for more information.
    http://www.primekey.se/Products/EJBCA+PKI/
    http://www.primekey.se/Services/Support/