Menu
▾
▴
[Opensc-devel] Keychain Access only lists expired certificates on my PIV card
|
From: Matthew X. E. <xen...@ir...> - 2018-05-11 14:58:56
|
Dear all, When I open the "PIV_II" keychain, Keychain Access only lists expired certificates. The same is true for apps that use Apple's APIs for smartcard authentication, e.g., Safari, Slack, Outlook. This is OpenSC 0.18-rc2 running on macOS 10.13.4. `pkcs11-tool --login --test` completes successfully. I can use the PIV card with Firefox, so the card itself has valid certificates on it. I experienced the same behavior in OpenSC 0.17, so this isn't a regression. Any suggestions on what I should try next? I saw a debug logging knob in opensc.conf, so I'm starting there. Best wishes, Matthew -- "The lyf so short, the craft so longe to lerne." |
