Install Smartcrypt on RHEL from Start to Finish - not connected to a domain

  1. Obtain the installer from PKWARE and install

    sudo rpm -i Smartcrypt_CLI-15.20.0014-x86_64.rpm	
  2. Switch to the user's home directory and create a folder called .PKWARE and change to that directory

    mkdir .PKWARE
    cd .PKWARE/
  3. Using  your favorite editor, create a file called settings.json, then enter your CMD's URL

    nano settings.json
    {
    "CMDS":"https://mh-tde-smds.mh.int/MDS"
    }
    
    

    Ensure you have https and note that the installation directory is case sensitive. MDS is not the same as mds.

  4. Configure the agent to use a user account

     /usr/pkware/pkzip/bin/pkagent --config --email foo@bar.int --iwa foobar
  5. Import Trusted Root certificate

    Copy the certificate to /etc/pki/ca-trust/source/anchors and run "update-ca-trust"

    Self signed certs are not supported.  You must use a root cert or set "DisableSSLVerify":true in the settings.json file

  6.  Test the configuration by listing the Smartkeys for the account being used

    [mike_he@dayts-centos1-64 .PKWARE]$ pkzipc -listsm
    Smartcrypt(TM) Version 15 for Linux X86-64
    Portions copyright (C) 1989-2016 PKWARE, Inc.  All Rights Reserved.
    Reg. U.S. Pat. and Tm. Off.  Patent No. 5,051,745  7,793,099  7,844,579
    7,890,465  7,895,434;  Other patents pending
    
    Connecting to Smartcrypt Manager............
    
     ----------------------------------------------------------------
                                 Smartkeys
     -------------------------------  -------------------------------
                 Name/URN                        Owner
     -------------------------------  -------------------------------
     Community: Robb's community      non-human@mh.int
     community-A7oarcmkpy3WU2Eg-SAT_K7uTXuYxQuMp1tN2VOEMXMkX
     ----------------------------------------------------------------
     Community: IT                    non-human@mh.int
     community-mlUmn4u9CK2BiURb-SAT_K7uTXuYxQuMp1tN2VOEMXMkX
     ----------------------------------------------------------------
     Personal Smartkey                michael@mh.int
     priv--MA_243_ARfpMLhDTO8XdrQ3b+l1bjCbBdB9PA8JH7j9FbR5c9E=
     ----------------------------------------------------------------