Home
Projects
Help

Search:

pfSense

All Projects

pfSense

Overview
Activity
Roadmap
Issues
Gantt
Calendar
News
Documents
Repository

Custom queries

2.4.5-p1 - Resolved/Closed
2.5.0 - Resolved/Closed
2.5.1 - Resolved/Closed
2.5.2 - Resolved/Closed
2.6.0 - Resolved/Closed
2.7.0 - Resolved/Closed
2.7.1 - All Open Issues
2.7.1 - Resolved/Closed
2.7.2 - Resolved/Closed
2.8.0 - All Open Bugs
2.8.0 - All Open Features
2.8.0 - All Open Issues
2.8.0 - All Open Regressions
2.8.0 - Feedback
2.8.0 - Needs Attention
2.8.0 - New/Confirmed
2.8.0 - Pull Requests
2.8.0 - Regressions affecting 2.7.0
2.8.0 - Resolved/Closed
21.02.2/2.5.1 - Resolved/Closed
21.05 Plus - All Closed Issues
21.05.1 Plus Target - All Closed Issues
21.05.1 Target - All Closed Issues
22.01 Plus - All Closed Issues
22.01 Target - All Closed Issues
22.05 Plus - All Closed Issues
22.05 Target - All Closed Issues
23.01 Plus - All Closed Issues
23.01 Target - All Closed Issues
23.05 Plus - All Closed Issues
23.05 Target - All Closed Issues
23.05.1 Plus - All Closed Issues
23.05.1 Target - All Closed Issues
23.09 Plus - All Closed Issues
23.09 Target - All Closed Issues
23.09.1 Plus - All Closed Issues
23.09.1 Target - All Closed Issues
24.03 Plus - All Closed Issues
24.03 Target - All Closed Issues
24.11 Plus - All Closed Issues
24.11 Plus - All Open Issues
24.11 Plus - Feedback Issues
24.11 Plus - Needs Attention/Work
24.11 Plus - New/Confirmed/In Progress Issues
24.11 Target - All Closed Issues
24.11 Target - All Open Issues
25.01 Plus - All Closed Issues
25.01 Plus - All Open Issues
25.01 Plus - Feedback Issues
25.01 Plus - Needs Attention/Work
25.01 Plus - New/Confirmed/In Progress Issues
25.01 Plus - Pull Request Review
25.01 Plus - Waiting on Merge
25.01 Target - All Closed Issues
25.01 Target - All Open Issues
All Open Issues assigned to Me
All Open Pull Requests
Any Target - All Open Regressions
Any Target - Feedback Issues
CE-Next - All Closed Issues (Move to specific target)
CE-Next - All Open Issues
CE-Next - Feedback (Likely needs target changed)
New Issues by Category - Future Target
New Issues by Category - No Target
New Issues by Category - No Target+Future
No Target - All Open Issues (Base Only)
No Target - New Issues (Base Only)
No Target - New Issues (Base and Packages)
Release Notes - Plus Target Version (DO NOT EDIT)
Release Notes - Target Version (DO NOT EDIT)

Actions

Copy link

Feature #6775

closed

Strongswan PKCS#11 Support

Added by Anonymous about 8 years ago. Updated almost 5 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Renato Botelho

Category:

IPsec

Target version:

2.5.0

Start date:

09/07/2016

Due date:

% Done:

Estimated time:

Plus Target Version:

Release Notes:

Description

We developed a Smart Cards based authentication of StrongSwan-IPsec-VPN peers.
This already works on pfSense 2.2.6 by replacing the Strongswan version, but this does not work any longer on pfSense 2.3.X.
The goal is using Smart Cards together with future pfSense versions. Therefore we need StrongSwan PKCS#11 support.

Adding PKCS#11 support needs to be added during compilation/making the binary.

It would help us a lot, if you put PKCS#11 support to StrongSwan within the next pfSense release.

History
Notes
Property changes
Associated revisions

Actions

Copy link

Updated by Jim Thompson about 8 years ago

Assignee set to Renato Botelho

https://wiki.strongswan.org/projects/strongswan/wiki/PKCS11plugin

no idea what this needs in the GUI, etc.

OP should contact me.

Actions

Copy link

Updated by Renato Botelho about 7 years ago

Target version changed from 2.4.0 to 2.4.1

Actions

Copy link

Updated by Jim Pingle about 7 years ago

Target version changed from 2.4.1 to 2.4.2

Actions

Copy link

Updated by Jim Pingle about 7 years ago

Target version changed from 2.4.2 to 2.4.3

Actions

Copy link

Updated by Jim Pingle over 6 years ago

Target version changed from 2.4.3 to 2.4.4

Actions

Copy link

Updated by Anonymous over 6 years ago

Target version changed from 2.4.4 to 48

Actions

Copy link

Updated by Jim Pingle over 5 years ago

Target version changed from 48 to 2.5.0

Actions

Copy link

Updated by Renato Botelho about 5 years ago

Status changed from New to Feedback

Plugin support was added to strongswan port on pfSense 2.5.0

I still don't know exactly what to do on GUI

Actions

Copy link

Updated by Viktor Gurov about 5 years ago

Tested, with editing of ipsec.secrets, ipsec.conf and charon.conf
+ installing packages: ccid-1.4.30.txz, opensc-0.19.0.txz, pcsc-lite-1.8.24,2.txz + dependencies
HowTo: https://wiki.strongswan.org/projects/strongswan/wiki/SmartCards

Works

pfSense 2.5.0.a.20191024.0021

need GUI options to select ID of certificate on token + PIN
and testing with different tokens

tested with Aktiv Rutoken ECP

Actions

Copy link

#10

Updated by Viktor Gurov almost 5 years ago

Status changed from Feedback to Closed

Please see https://redmine.pfsense.org/issues/9878 for details

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Feature #6775

Strongswan PKCS#11 Support

Updated by Jim Thompson about 8 years ago

Updated by Renato Botelho about 7 years ago

Updated by Jim Pingle about 7 years ago

Updated by Jim Pingle about 7 years ago

Updated by Jim Pingle over 6 years ago

Updated by Anonymous over 6 years ago

Updated by Jim Pingle over 5 years ago

Updated by Renato Botelho about 5 years ago

Updated by Viktor Gurov about 5 years ago

Updated by Viktor Gurov almost 5 years ago