Whiteboard Accessories User Manual
Chapter 5 Configuring Sun ONE Server Software for Use With the Sun Crypto Accelerator 4000 Board 87
Tokens and Token Files
Keystores appear to Sun ONE Web Servers as tokens. Token files are a technique for
Sun Crypto Accelerator 4000 administrators to selectively present only specific
tokens to a given application.
Example
There are three keystores, engineering, finance, and legal. The following tokens are
presented to the Sun ONE Web Server:
■ engineering
■ finance
■ legal
Token Files
To override the default case, a token file must exist. Some applications cannot handle
multiple tokens. Token files are text files that contain one or more token names, one
per line.
Note – Token names and keystore names are the same.
A Sun ONE Web Server presents only the tokens listed in the token file. The
methods of specifying token files are as follows (in order of precedence):
1. The file named by the environment variable SUNW_PKCS11_TOKEN_FILE
Some application software suppresses environment variables, in which case this
approach might not be feasible.
2. The file $HOME/.SUNWconn_cryptov2/tokens
This file must exist in the home directory of the UNIX user that the Sun ONE Web
Server runs as. The Sun ONE Web Server may run as a UNIX user who has no
home directory, in which case this approach might not be feasible.
3. The file /etc/opt/SUNWconn/cryptov2/tokens
If no token file exists, the Sun Crypto Accelerator 4000 software presents all tokens
to Sun ONE Web Servers.