The whole chain needed in order to use smart cards are quite complex. PKI, middle-ware and cards are needed and must all work together in order to make a succesful deployment in larger scale. This talk will demonstrate how opensc can be used together with EJBCA PKI, using smart cards as an HSM for the certificate authority, issuing certificates to user smart cards to be used for client authentication. We will show where the tricky integration points are and talk about what we can do about it together.