Chapter 7. PIN Generator

Chapter 7. PIN Generator

7.1. The setpin Command
7.1.1. Editing the setpin.conf Configuration File
7.1.2. Syntax
7.1.3. Usage
7.2. How setpin Works
7.2.1. Input File
7.2.2. Output File
7.2.3. How PINs Are Stored in the Directory
7.2.4. Exit Codes

For the Certificate System to use the UidPwdPinDirAuth authentication plug-in module, the authentication directory must contain unique PINs for each end entity which will be issued a certificate. The Certificate System provides a tool, the PIN Generator, which generates unique PINs for end-entity entries in an LDAP directory. The tool stores these PINs as hashed values in the same directory against the corresponding user entries. It also copies the PINs to a text file so that the PINs can be sent to the end entities.