I have Windows Server running web app by Java Glassfish. My clients have smart cards and they are using Firefox because security module that communicate with smart card and reader. So, first they need to enter PIN, then after that step open new login page and they need to authenticate as usual with username and pass. Also on this Win Server there is Apache and Ngnix. One of them is working as proxy or checker for clients authentification by smart cards. (i think).
How that works:
I had Phpki and i generate PEM certs with opensc (pkcs11) and had to programming them on Smat Cards.
Now, my hardver is broken so i have new Phpki on VM. It works well.
Please help me. I know that i need somehow to make trust connection and make additional steps to archive that.
Phpki will not be exposed to the internet, just for generating certs (PEM).
What to do? Please help...