Storing your grid certificate on an Aladdin eToken

From PDP/Grid Wiki

Revision as of 15:30, 23 April 2007 by Janjust@nikhef.nl (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

How to store your existing grid certificate on an Aladdin eToken

To store your existing grid certificate (usercert.pem and userkey.pem files) use the following commands

Convert your public certificate to DER format

 openssl x509 -in ~/.globus/usercert.pem -out usercert.der -outform der

Load your public certificate on the eToken (you must use your user PIN to do this):

 # pkcs11-tool --module /usr/local/lib/libetpkcs11.so -w usercert.der --type cert --label "Jan Just Keijser" --id 1234 --login
 Please enter User PIN:
 Generated certificate:
 Certificate Object, type = X.509 cert
   label:      Jan Just Keijser
   ID:         1234

Load your private key on the eToken (you must use your user PIN to do this):

Retrieved from "https://wiki.nikhef.nl/grid/index.php?title=Storing_your_grid_certificate_on_an_Aladdin_eToken&oldid=759"

Navigation menu