Sign winword documents - CSP

From: Karl Macku (karl.macku_at_aon.at)
Date: 09/29/03 

Date: Mon, 29 Sep 2003 23:16:08 +0200

Hi all,
    We have written our own CSP in combination with a smartcard and
biometric user identification.
    After receiving the certificate from a CA, the cert will be stored on
the SmartCard too, so we are
    able with a samall utility to insert the cert from the smartcard to any
other PC and further work with that.

    This works pretty well with Outlook, Outlook express, our internal and
thirs party software, but fails with
    Word 2000 for the signature function. We have realized, that there must
be any difference between the
    entry in the certification store, where the original gotten cert was
stored against the a certificate, which
    will "imported" from the Smartcard into the MY store, which will prevent
Windows Word 2000 to use
    this certificate for signature process. It seems that during the
enumaeration of available certs, Winword will
    not recognize out imported cert for this functionality.

    Does anyone know, what Winword is looking for to prove that a cert can
be used within?

    many thanks for any good hint

Karl

Relevant Pages

  • RE: integrity and mail encryption
    ... PKI Administrator creates a “passcode” that will allow user to download cert from our Managed PKI web interface. ... User agrees to take full responsibility for the safekeeping and protection of the private key associated with this cert. ... User downloads and installs certificate. ... Smartcard / Token, the cert resides on a smartcard which can also be PIN protected. ...
    (Security-Basics)
  • Re: ADFS Token-signing Certs Not in Trusted Root Store
    ... This is good info, Joe. ... So now I know that the token-signing certificate is ... Get a signing cert from a CA ... case, you never have to worry about expiration or CRL checking, as your cert ...
    (microsoft.public.windows.server.active_directory)
  • Re: Issues with SSL on Win CE 5.0
    ... the HKCU certificate store. ... and tell the web server to use it. ... The old cert was in. ...
    (microsoft.public.windowsce.embedded)
  • Re: Accessing certificate store from ASP.NET web project
    ... the cert must be in the local computer/personal) store - it will then open ... Have a look at the source code to open the right cert store... ... One of the locations requires a x509 certificate in order ... different user context than my vb.net web project. ...
    (microsoft.public.dotnet.security)
  • Re: Web Certificate for IIS Server on SBS Domain
    ... Before your reply, I actually ran across rapidssl myself, and have ordered and installed the free 30-day certificate on my site. ... I explained what you'd told me about putting my existing configuration at risk by installing Cert Services, and he said he didn't know that. ... Again, if you're just needing a cert to install on your web server to provide SSL connectivity for remote users, go with an external third-party provider. ... When you add Certificate Services on an internal network, lots of internal communications will start using pieces provided by the Cert Server instead of the defaults from Server 2003, and when things blow up, they can blow up gloriously. ...
    (microsoft.public.windows.server.sbs)