SafeNet Authentication Client 10.2 Mac (GA) Administrator Guide Document Number: 007-013726-002, Revision B 15 2 – Installation Installing SafeNet Authentication Client on Mac OS X The installation package is SafeNetAuthenticationClient.10.2.x.0.dmg. To install with the installer: 1. Double click the SafeNetAuthenticationClient.10.2.x.0.dmg file. Safenet Authentication client MAC OS 10.10 i 10.11 Safenet Authentication client 9.1.2 Safenet Authentication client 10.2.82. WebSecTech MAC OS 10.10 i 10.11. Program for signing and encrypting files MAC OS 10.10 i 10.11. Program support for Google Chrome and Mozilla Firefox SignErgy.dmg. Gemalto IDPrime MAC OS 10.11 MAC OS 10.10. The latest version of Start SafeNet Authentication Client is 8.2 on Mac Informer. It is a perfect match for the General category. The app is developed by com.aladdin.
How to install your token software
Token software installation
The SWIFT 3Skey token management portal currently supports the use of Java and Sconnect, both can be used to activate and manage the tokens. 3SKey users must liaise with the service provider of their signing application to determine whether it requires the Java or Sconnect software.
Please accept the terms and conditions and refer to the installation steps below.
The provision and use of the 3SKey solution are governed by the 3SKey Terms and Conditions. Always refer to the latest available version on SWIFT Contracts.
For more information about the features and functions of the 3SKey solution, and your roles and responsibilities as a 3SKey user or 3SKey subscriber or those of SWIFT as the provider of the 3SKey solution, regularly check the latest available version of the 3SKey Service Description on Documentation.
Important: the provision and use of 3SKey tokens are subject to United States export restrictions and other sanction programmes. Persons located in or from Cuba, North Korea, Iran, Sudan or Syria, and persons identified on US government or EU 'denied party' or the 'Specifically Designated Nationals' lists, are not permitted to possess or use 3SKey tokens.
Click here to accept the 3SKey Terms and Conditions referred to above. By accepting, you also represent and warrant to SWIFT that you are not subject to any of the export restrictions and other sanction programmes that would prohibit your possession or use of the 3SKey tokens. Instructions for Windows
Instructions for MAC OSThe use of 3SKey tokens has been qualified on MAC OS. The support is limited to using 3SKey tokens on a MAC for signing transactions. The token management, including the activation on the 3SKey portal, must be done from a PC. Please refer to Installation and support for Mac OS.Verify your token software
Spore galactic adventures free download mac. The token software consists of 2 components:
Download and install kies. You can verify the installation of these 2 components as per the steps below.
SWIFT Token Client
Visio 2007 free download for mac. You can verify that the SWIFT Token software is started successfully by validating the presence of the SafeNet icon in the Taskbar (bottom right, next to the clock).
You can verify the version of the SWIFT Token software currently installed on your PC following the below procedure:
SConnect
You can verify that Sconnect is installed successfully by validating the presence of the SConnect icon in the Command bar of your browser. Click on the SConnect icon then on the Settings icon on the top right. Click on About and verify that the extension version is at least 2.10.0.0. Click on AddOns and verify that the PKCS11 1.6.10.7 and WebSigner 1.4.1.1 add-ons are present. If the version of SConnect or of the add-ons is not correct please uninstall then reinstall SConnect. For Google Chrome and Mozilla Firefox you need to remove the extension from the browser and uninstall SConnect Host from the list of installed programs. For Internet Explorer you need to uninstall SConnect IE in the list of installed programs. You can find complete uninstall instructions here. Then follow the installation instructions above. How to reinstall the 3SKey certificate on a new system?
To use your 3SKey certificate on a different system you simply need to reinstall the 3SKey software.
Once the software is installed and your token has already been activated and registered with your bank(s) then the certificate will be detected when the token is plugged in.
This article is intended for system administrators who set security policy in enterprise environments that require smart card authentication.
Enable smart card-only login
Make sure that you carefully follow these steps to ensure that users will be able to log in to the computer.
For more information about smart card payload settings, see the Apple Configuration Profile Reference.
For more information about using smart card services, see the macOS Deployment Guide or open Terminal and enter
man SmartCardServices .
Disable smart card-only authentication
If you manually manage the profiles that are installed on the computer, you can remove the smart card-only profile in two ways. You can use the Profiles pane of System Preferences, or you can use the /usr/bin/profiles command-line tool. For more information, open Terminal and enter
man profiles .
If your client computers are enrolled in Mobile Device Management (MDM), you can restore password-based authentication. To do this, remove the smart card configuration profile that enables the smart card-only restriction from the client computers.
To prevent users from being locked out of their account, remove the enforceSmartCard profile before you unpair a smart card or disable attribute matching. If a user is locked out of their account, remove the configuration profile to fix the issue.
If you apply the smart card-only policy before you enable smart card-only authentication, a user can get locked out of their computer. To fix this issue, remove the smart card-only policy:
![]()
Configure Secure Shell Daemon (SSHD) to support smart card-only authentication
Users can use their smart card to authenticate over SSH to the local computer or to remote computers that are correctly configured. Follow these steps to configure SSHD on a computer so that it supports smart card authentication.
Update the /etc/ssh/sshd_config file:
Then, use the following commands to restart SSHD:
sudo launchctl stop com.openssh.sshd
sudo launchctl start com.openssh.sshd
If a user wants to authenticate SSH sessions using a smart card, have them follow these steps:
If the user wants to, they can also use the following command to add the private key to their ssh-agent:
ssh-add -s /usr/lib/ssh-keychain.dylib
Enable smart card-only for the SUDO command
Use the following command to back up the /etc/pam.d/sudo file:
sudo cp /etc/pam.d/sudo /etc/pam.d/sudo_backup_`date '+%Y-%m-%d_%H:%M'`
Then, replace all of the contents of the /etc/pam.d/sudo file with the following text:
Safenet Authentication Client X64Enable smart card-only for the LOGIN command
Use the following command to back up the /etc/pam.d/login file:
sudo cp /etc/pam.d/login /etc/pam.d/login_backup_`date '+%Y-%m-%d_%H:%M'`
Then, replace all of the contents of the/etc/pam.d/login file with the following text:
Enable smart card-only for the SU command
Use the following command to back up the /etc/pam.d/su file:
sudo cp /etc/pam.d/su /etc/pam.d/su_backup_`date '+%Y-%m-%d_%H:%M'`
Then, replace all of the contents of the/etc/pam.d/su file with the following text:
Safenet Authentication Client 8.3 DownloadSample smart card-only configuration profileSafenet Authentication Client Software
Here’s a sample smart card-only configuration profile. You can use it to see the kinds of keys and strings that this type of profile includes.
Comments are closed.
|
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2020
Categories |