Hi,
I have imported a pkcs12 on my yubikey using yubico-piv-tool. yubico-piv-tool -a read-cert -s 9c returns the certificate ok. The purpose of it is to use this client certificate as a MFA challenge through a web based portal. I run this on Fedora 25. How do I make firefox see the yubikey as a personal certificate store?
thanks.
update - After some googling I got this to work by installing opensc, and adding a security device pointing to /usr/lib64/opensc-pkcs11.so. After installing that package the yubikey 4's light is on continuously, and every second a kernel message is issued:
Sep 17 12:58:28 marchost kernel: xhci_hcd 0000:00:14.0: WARN Event TRB for slot 7 ep 4 with no TDs queued?
what is causing this message?
update2 - for the xhci_hcd messages see bug
https://bugzilla.redhat.com/show_bug.cgi?id=959699 and more specifically pointing to YubiKey4:
https://bugzilla.redhat.com/show_bug.cgi?id=1394501Note that they only started spamming the messages log after having installed opensc.
Login
FAQ
Search
