Hi everyone,
I am trying to map a certificate from a smart card to an entry in LDAP using pam_pkcs11-0.6.2-11.1 and NSS. The problem I am having is that the cert_info.c file seems to have two separate cert_info() functions. One for when NSS is installed and one for when NSS is not installed. However, when the ldap_mapper.c file calls the cert_info() function with NSS installed, the cert_info() function that handles the request does not have a CERT_PEM case. This is causing me to get this error:
DEBUG:cert_info.c:267: Invalid info type requested: 10
DEBUG:ldap_mapper.c:880: get_certificate() failed
DEBUG:mapper_mgr.c:243: Cannot find cert data for mapper ldap
The cert_info() file is shown here:
http://www.opensc-project.org/pam_pk...rt_info.c#L275
I feel like there has to be a way for smart card authentication via LDAP with NSS, however, I have not been able to find a way around this problem. Has anyone implemented this scenario or know if this is even possible?
Any suggestions are very much appreciated.
Thank you,
breds