Disclaimer

News and [[Current events]]

Aladdin's eToken middleware 3.60 is out. This will also work with eTokenPro 64k and eTokenNG OTP.

Using the eToken with a Certificate and private Key for an ssh login. Read more

Enrolling an eToken completely at the command line using pkcs11-tool (opensc). Read more

Introduction

The eToken is a readerless smartCard, that can be plugged into the usb port.

It can be run in two different ways under Linux:

You can use the open source project opensc and format the token in pkcs15. Although there is pkcs15-Support for Windows, this will break the default compatibility to Windows.

The other possibility is, to use the token the generic way, as it comes when you buy it from your distributor. For this you will need the Aladdin pkcs11-library, that comes with the Aladdin Linux SDK. This way the eToken will be readable both, under Linux _and_ Windows.

Information Sources

Where to get the basic information?

* Where to buy an eToken http://www.lsexperts.de * Getting eTokens and an SDK for testing http://www.aladdin.de/produkte/usbtoken_esecurity/etoken_teststellung.html * Learn more about opensc http://www.opensc-project.org/download.php * Just getting the Linux SDK mailto:cornelius.koelbel_at_lsexperts.de * Learn more about pam_pkcs11, which is needed to Login via eToken http://www.opensc-project.org/pam_pkcs11/ * openca can be used, to rollout your certificates to the eToken http://www.openca.org

Also take a look at the FAQ.

HOWTOs

Here you will find HOWTOs for several problems. Here are some examples:

HOWTOs/eToken on Linux | HOWTOs/Linux and OTP | HOWTOs/eToken eventmanager

Feel free to contact us and provide your own HOWTO!

Applications

that run with the eToken: applications for eToken. But there are sill many applications missing.

Interoperability between Linux and Windows

Windows is using the MS Cryto Api to write to the eToken. On Linux you will access the eToken using the pkcs11-lib. Thus, certificates that are written under Linux can be read under Windows.

But certificates that where written under Windows using the Crypto Api can not be read under Linux. But you could also use the mozilla family under Windows and the Aladdin pkcs11 Windows-DLL to write certifcates to the eToken, which then can be read under Linux.

What needs to be done is, to make Linux able to read the certificates written by the Microsoft Crypto Api.

This can now be done using the tool CertConv, developed by LSE.

The Future

ToDo

This section describes missing applications and what needs to be done. -> ToDo/Missing Applications

[[Roadmap]]

Here you can see some events on the Roadmap.

None: HelpOnLanguages (last edited 2008-09-12 12:59:36 by localhost)