GlobalProtect Linux Smart Card
cancel
Showing results for 
Search instead for 
Did you mean: 

GlobalProtect Linux Smart Card

L3 Networker

There is a Smart Card solution that uses pkcs#11 and middlware that provides OS communication to the card. Is there a way to use this certificate from the card for GlobalProtect authentication?

GP is looking for a cert in a specific location, but it is not possible to extract it from the Smart Card and import for GP (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PLMaCAO).

 

Is this supported at all? If so, is there any information available?

1 REPLY 1

L0 Member

I am having the same issue on CentOS 7 using pcsc, Coolkey, and sometimes OpenSC.  GP agent is looking in a specific directory for pfx and dat files I believe, but I cannot get a p12 cert exported from my smart card to import.  I would like GP to use my smart card for credentials. Any success regarding this issue, if it is even supported?

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!