HID OmniKey SmartCard not working in 10.11

App & System Services Core OS
ykirks77 OP
Created Sep ’15
Replies 2
Boosts 0
Views 3.9k
Participants 2

We use smartcard authentication for RDP sessions - but via a Windows guest VM on our OS X hosts. But in El Capitan (GM), the smartcard is not passing through to the VM, so we cannot log in. Console entries around the failures on the OS X side read:


com.apple.SecurityServer: token in reader OMNIKEY AG CardMan 3121 cannot be used (error 229)


I checked the HID site, and they have some newer beta software for this particular reader (released 9/4/2015), but it won't install on OS X 10.11. Anyone else seeing any similar issues?

Replies  2
Boosts  0
Views  3.9k
Participants  2
Buijtendijk OP
Oct ’15

I'm having the same problem:


token in reader OMNIKEY AG CardMan 6121 cannot be used (error 229)


Does anyone got the solution for this issue?

0
Buijtendijk OP
Oct ’15

Got it working again. This is what I did:


  • put the iMac in recovery mode with cmd+R during startup
  • in Terminal disabled System Integrity Protection: csrutil disable
  • restart iMac
  • opened the folder system/library/security/tokend and entered Timemachine
  • restored the file Safesign.tokend
  • restarted and it worked again


I know that disabling SIP isn't the most elegant way of doing this and I hope someone got a different approach to this. Perhaps we need to wait until the OMNIKEY software is updated for El Capitan and isn't installed into the systeem folder any longer.

0
HID OmniKey SmartCard not working in 10.11
First post date Last post date
 
 
Q