Forum / NoMachine Terminal Server Products / Programs don’t use smart card on server
Tagged: linux, smart card
- This topic has 5 replies, 2 voices, and was last updated 7 months, 3 weeks ago by Guro.
June 27, 2022 at 14:34 #39024
Hello again NoMachine!
When I connect to Linux server from Windows client and then choose security module smart card the device is seen. Also when I input in console: pkcs11-tool –module /usr/NX/lib/libpkcs11.so -L
I see this token but I can’t use it in system, programs don’t see that this smart card is connected.
What should I do else or some thing did wrong with that connections?
Attachments:June 28, 2022 at 15:08 #39040
Please could you provide more detail about how you are using your smartcard in a NoMachine session, so we can understand the steps you are taking/have taken?
What NoMachine product server side are you using? What type of session is it? Can you tell us the Linux distribution and version?
programs don’t see that this smart card is connected
Which programs exactly? Do these programs support the path set to the NoMachine pkcs11 module?July 22, 2022 at 21:42 #39402
I am terribly sorry for late answer.
I use a physical token in my computer on Win 10 use NoMachine Enterprise Client 7.10.2 then I connect to Alt Linux sp8 by NX protocol port 4000 (also the same thing with ssh 22) to use a NoMachine Enterprise Terminal Server-7.10.1. As a cryptoprovider we use from both side CryptoPro 5.0.12000. To test my container we try GUI interface CryptoPro and console to check containers.
And yes CryptoPro 5.0.12000 are support this moduleJuly 25, 2022 at 09:20 #39421
Did you tried to read public key or certificate on server side after forward device?
Could you run in session terminal command like:
pkcs11-tool --module /usr/NX/lib/libpkcs11.so -l --read_object --type pubkey --id <key_id>
to check accept to generated key pair or certificate. Please send to us all error messages if they appear.July 27, 2022 at 10:56 #39460
Yes, I tried to do this too
I got this message after command
Attachments:July 29, 2022 at 11:06 #39504
Logs from the NoMachine server would be useful as well. Please follow the instructions here: https://kb.nomachine.com/DT11R00182. You can send them directly to forum[at]nomachine[dot]com making sure to reference the title of your topic.
I tried checking CryptoPro on the fly and the installed version does not contain module rtPKCS11ECP. Please could you also tell us the exact version and whether you are using the free version or a subscription of CryptoPro?
Additionally would you be willing to run a NoMachine client debug package on your client host to get extended information from client side?
This topic was marked as solved, you can't post.