easy-rsa icon indicating copy to clipboard operation
easy-rsa copied to clipboard

Published 20 hours ago verified publisher icon OpenVPN

Plans for PKCS#11 smartcard support?

Open graffen opened this issue 6 years ago • 2 comments

I have a couple of Nitrokey HSMs, and I can see in different places that Easy-RSA does not support PKCS#11 smartcards. In other places it says "planned for a future point release". Are there any specific plans to implement support for this type of device?

graffen avatar Nov 29 '18 19:11 graffen

In all honesty, there is no current plan to implement this. Not because I don't think it's worthwhile, more I don't have the time to do the work.

ecrist avatar Dec 12 '18 13:12 ecrist

I've added a version of PKCS#11 support via https://github.com/OpenVPN/easy-rsa/pull/332 and would love any feedback! It's only tested with SoftHSM but over the next week or so I'll be testing and documenting usage on a YubiKey NEO 4.

0xdecaf avatar Oct 08 '19 16:10 0xdecaf

Follow-up: #689

TinCanTech avatar Sep 27 '22 00:09 TinCanTech