-
Notifications
You must be signed in to change notification settings - Fork 85
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PKCS11 not working on linux #319
Comments
I did the same exercise on Windows, on Windows the list of certificates are showed as a pop up to be selected. And just to clarify since I didn't include this in the original post I'm using the latest release on Linux and Windows. |
Look for the "Find client certificates issued by" message in DavMail logs, client certificates are filtered in issuer requested by server. Relevant code is in DavMailX509KeyManager |
Hi @mguessan, thanks for your reply. Any suggestion? Maybe I can force the certificates somehow? |
no private keys found means no alias matched criteria. You may want to enable ssl logging with: or |
Enabled: But as I mentioned this works when using firefox, I can select the proper certificate.
I know that the smartcard is being read when davmail starts, because if I change the library to something incorrect I get an exception, but I guess the Keystore and the TLS part have some interaction that is not working? I'm not sure what could be the problem here, or if I'm missing something. |
Hi;
I'm trying to use the pkcs11 and I keep getting the error:
I setup the configuration as:
I tested also with:
And I can see all the certificates; although on keytool the list is always in lower case and in davmail it is case sensitive.
For example on davmail log I can see something like:
0=Xxxx
in the keytool output I seeo=xxx
Am I missing something in the configuration or is it possible that we have a bug on the detection of the certificates on the pkcs11?
The text was updated successfully, but these errors were encountered: