Connection with PKCS _11

PKCS #11 is one of the public key cryptography standards. Xshell 7 can connect to a remote SSH servers using a PKCS #11 encrypted hardware security token (HSM) or a smart card's RSA key.

To create a new PKCS #11 session:

  1. Select [New] from the [File] menu.
  2. Enter a session name in [Name].
  3. Select SSH from the [Protocols] list.
  4. Enter a host name in [Host]
  5. Select [Authentication] from under [Category].
  6. Select PKCS11 from the [Method] list.
  7. Click the [Setup] button.
  8. Enter the path of the middleware program that can connect to the hardware token that contains the user key. Or click […] to browse for it.
  9. If the pin number is set in the hardware token, enter the pin number.
  10. Click [OK] to close Setup PKCS11 dialog.
  11. Enter the User Name.
  12. Click [OK] to save the session file .
  13. Click [Connect] to connect immediately or select the session file from the Sessions Dialog Box to connect.


To create a new PKCS #11 session:

  1. Select [New] from the [File] menu.
  2. Enter a session name in [Name].
  3. Select SSH from the [Protocols] list.
  4. Enter a host name in [Host]
  5. Select [Authentication] from under [Category].
  6. Select PKCS11 from the [Method] list.
  7. Click the [Setup] button.
  8. Enter the path of the middleware program that can connect to the hardware token that contains the user key. Or click […] to browse for it.
  9. If the pin number is set in the hardware token, enter the pin number.
  10. Click the [Setup SSH CA Keys] button to open the HW Token SSH Keys dialog.
  11. Click the Add button to select the CA server authenticated public key certificate file.
  12. Click [OK] in both the HW Token SSH Keys and Setup PKCS11 dialogs.
  13. Enter the User Name.
  14. Click [OK] to save the session file .
  15. Click [Connect] to connect immediately or select the session file from the Sessions Dialog Box to connect.