EUTRONSEC S.p.A. AAA 用户手册
CryptoIdentity User Guide – 7. Frequently Asked Questions and Troubleshooting
Probably, there is an active process which accesses the CryptoIdentity, and this causes
the problem. For example, if the Microsoft Smartcard logon mechanism is enabled, the
CryptoIdentity is not available for the initialization because already in use by Smartcard
logon related processes.
To solve the problem, you may try to unplug the CryptoIdentity and re-plug it into the USB
port. This should close automatically all the sessions opened by applications accessing
CryptoIdentity. Then, you can try to start a new Initialization process.
5. I want to delete a certificate or an object stored into CryptoIdentity. How can I do
it?
First, import a value into the Windows registry. To do so, access the "Utils\Advanced"
subfolder located in the CryptoKit installation folder and import the
"arGenieParams(xx).reg". Then run the ARGenie utility in "advanced" mode (for
instructions refer to section "3.1 ArGenie"). Access the CryptoIdentity objects list, right-
click on an object and select the "Delete" option.
Make sure to NOT delete an object or keys used to perform cryptographic
operations. For example, if data were encrypted using a deleted key stored
into the CryptoIdentity USB token, it will NOT be possible to decrypt that
data anymore. Please DO NOT delete an object unless you really know it
needs to be deleted.
operations. For example, if data were encrypted using a deleted key stored
into the CryptoIdentity USB token, it will NOT be possible to decrypt that
data anymore. Please DO NOT delete an object unless you really know it
needs to be deleted.
The importing of the registry value must be repeated for each user that
want to delete objects on the CryptoIdentity. Logon to Windows with the
credentials of each user for which to enable the deleting of objects and
import the " arGenieParams(xx).reg" file .
want to delete objects on the CryptoIdentity. Logon to Windows with the
credentials of each user for which to enable the deleting of objects and
import the " arGenieParams(xx).reg" file .
6. I have lost the Security Officer PIN, then I can not initialize the CryptoIdentity
anymore. But I want to delete certificates and object stored into CryptoIdentity.
How can I proceed?
How can I proceed?
See the previous FAQ (number 5). The Security Officer PIN is not required.
7. I want to export a digital certificate from CryptoIdentity. How do I do it?
The digital certificate's private key must be set to "exportable" during the key generation. If
the key is exportable, access the System Store Certificates by right-clicking the Internet
Explorer icon on the computer’s desktop, then select Properties->Content->Certificates