History

PIN Secret¶

IKEv1 uses the format %smartcard[<slotnr>[:<keyid>]] to specify the smartcard selector. The IKEv2 daemon supports multiple modules (configured in strongswan.conf) with the format %smartcard[<slotnr>[@<module>]]:<keyid>, but always requires a keyid to uniquely select the correct key. Instead of specifying the pin code statically, %prompt can be specified, which causes the daemons to ask the user for the pin code.

Notation¶

: PIN <smartcard selector> <pin code> | %prompt

Examples¶

: PIN %smartcard1:50 1234

# only with IKEv2
: PIN %smartcard@opensc:45 %prompt

strongSwan

Documentation¶

Resources¶

Wiki

PIN Secret¶

Notation¶

Examples¶