xca icon indicating copy to clipboard operation
xca copied to clipboard

Published 20 hours ago verified publisher icon chris2511

"Manage Security token" does not list any private keys

Open bluecmd opened this issue 4 years ago • 2 comments

Hi,

I am using XCA 2.4.0.

I am trying to re-import a private key using the "Manage Security token" dialog. However, it only shows the public key and the certificate object. If I use pkcs11-tool -O, those are the objects that are displayed - but if I also pass --login --pin XYZ the private key object is shown.

Is it possible to tell XCA to login on the token when managing the security objects?

bluecmd avatar Nov 18 '21 13:11 bluecmd

XCA expects for every public key a private key object to be available on the token. This is used when required for signing.

https://hohnstaedt.de/xca-doc/html/smartcard.html#key-management-on-the-token

It is of course possible to implement a login via pin during management, but why is it necessary?

chris2511 avatar Nov 19 '21 07:11 chris2511

Ah, so importing the public key would lead to adding a private key reference? I see, that's pretty neat. The issue can be closed if that's correct.

bluecmd avatar Nov 19 '21 08:11 bluecmd