Manualshelf

User's Manual

ManualsBrandsEUTRONSEC ManualsElectronicsUSB KEY CRYPTO IDENTITY
31323334353637383940
CryptoIdentity User Guide – 4. Managing Digital Certificates with CryptoIdentity
-Choose "AR Base Cryptographic Provider" as CSP. This is very
important, otherwise the certificate is not stored into the CryptoIdentity token.
Make sure the CryptoIdentity USB token is plugged in. Select Next.
-Type the CryptoIdentity PIN in the window that pops up. Wait while the
CryptoIdentity USB token generates the unique private key.
-At the end of the process, select Certificate Manager.
Install the Digital ID
-Click the certificate from the Valid Certificate List.
-Check the certificate summary and select Fetch And Install Certificate.
-Make sure the CryptoIdentity USB token is plugged in, click on Install
your cert. The certificate will be stored securely into the CryptoIdentity token.
Now manage the certificate for the desired purposes. See section "4.2 Viewing
Certificates" to see the certificate details through the operating system certificates list.
Additional notes:
It is mandatory to complete the whole process using the same machine
and the same browser. The previous steps refer to enrollment with
Microsoft Internet Explorer.
4. 1. 2 CERTIFICATES IMPORTED FROM FILE
It is possible to import into the CryptoIdentity token digital certificates saved in a standard
pkcs#12 format (files with .p12 or .pfx extension). The file to be imported must contain
the private key associated to the digital certificate included.
The PKCS#12 is the standard which describes the transfer syntax for personal identity
information, including private keys and certificates.
To import the digital certificates into the CryptoIdentity token you can use, for example,
Netscape or PKCS12Import utility.
Next sections explain how to do so with Netscape and PKCS12Import utility.
It is possible to generate a digital certificate and related keys outside the
token, for example in a file, save it in .p12 or .pfx format (including the
private key) and then import it into the CryptoIdentity token
This procedure is suggested to keep a backup of the digital credentials. For
further details refer to sections "4.3 Suggested policy for backup of digital
credentials" and "4.3.1 How to backup digital credentials".