Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Cerca nel supporto

Attenzione alle mail truffa. Mozilla non chiederà mai di chiamare o mandare messaggi a un numero di telefono o di inviare dati personali. Segnalare qualsiasi attività sospetta utilizzando l'opzione “Segnala abuso”.

Ulteriori informazioni

Questa discussione è archiviata. Inserire una nuova richiesta se occorre aiuto.

PKCS#11 authentication fails with sec_error_token_not_logged_in

more options

I am using a smart card (CAC) to login to a website. Logging out of the website and trying to log back in causes firefox to show the sec_error_token_not_logged_in error instead of asking for my pin.

Steps to reproduce:

1. Use smart card to login to a PKCS#11 secured website. e.g. http://www.sldcada.disa.mil/ Firefox will correctly ask for the smart card pin and authenticate. 2. logout and remove smart card 3. insert smart card and attempt to login again. Firefox will display the above error.

Expected Behavior:

At step 3 firefox will ask for my smart card pin to unlock the token and then authenticate with the website.

Workaround:

2.5 Edit > Preferences > Advanced > Encryption > View Certificates. Enter pin when prompted. Close the preferences windows. Step 3 will now work as expected because the smart card has been unlocked.

I am using a smart card (CAC) to login to a website. Logging out of the website and trying to log back in causes firefox to show the sec_error_token_not_logged_in error instead of asking for my pin. Steps to reproduce: 1. Use smart card to login to a PKCS#11 secured website. e.g. http://www.sldcada.disa.mil/ Firefox will correctly ask for the smart card pin and authenticate. 2. logout and remove smart card 3. insert smart card and attempt to login again. Firefox will display the above error. Expected Behavior: At step 3 firefox will ask for my smart card pin to unlock the token and then authenticate with the website. Workaround: 2.5 Edit > Preferences > Advanced > Encryption > View Certificates. Enter pin when prompted. Close the preferences windows. Step 3 will now work as expected because the smart card has been unlocked.

Tutte le risposte (5)

more options

Can you determine whether this is site-specific? For example, if at step 3, you were to visit another site that requires the CAC, will Firefox still fail to ask for a PIN?

Regarding the same site problem, does it make any difference if, at step 3, you:

(1) reload the page bypassing the cache (Ctrl+Shift+r)?

(2) remove the site's cookies and then reload the page?

You can selectively remove a single site's cookies this way: While viewing a page on the site:

  • right-click and choose View Page Info > Security > "View Cookies"
  • Alt+t (open the classic Tools menu) > Page Info > Security > "View Cookies"
more options

You can also try to clear the Active Logins via Clear Recent History to see if that helps.
I don't know if those logins apply to this situation with using a card reader.

more options

I had this problem and I did two things: first, I unblocked the site in NoScript, and second, I reset the recent history. After that it worked without problem.

more options

Thanks for all the replies. The problem is not site specific. Clearing the active logins is another workaround. Perhaps the issue is that active logins are not reset when the smart card is remove and reinserted. Is there a bug tracker where I can report this?

more options

Hi evanward1, you can file a bug here: https://bugzilla.mozilla.org/