CA's Key on Smart Card Problem
From: Denis Holtkamp (anonymous_at_discussions.microsoft.com)
Date: 01/13/05
- Next message: Jeff: "Re: Certificate Authority Error"
- Previous message: Nils Magne Lunde: "Re: Network Service unable to add spn"
- Next in thread: Steve Riley [MSFT]: "Re: CA's Key on Smart Card Problem"
- Reply: Steve Riley [MSFT]: "Re: CA's Key on Smart Card Problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 13 Jan 2005 06:51:57 -0800
Hi.
To improve the security of an offline root CA I want to
store the CA's private Key on a Smart Card. During the
installation process of the certificate services I
selected a Smart Card CSP (Gemplus) and activated the
checkbox "Allow this CSP to interact with the desktop".
When the setup process generates the cryptografic key I
have to enter the PIN of the Smart Card and then I got an
error message box "An error occurred when setting the
security access on the private key "Name of the CA", or
the CSP selected does not support setting security access
on private keys. Please make sure the CSP is installed
correctly or select another CSP. Not implemented
0x80004001 (-2147467263)". After this the installation of
the certificate services fails. I've already tried tested
this with different Smart Cards and different Computers,
but always got the same error.
Can anyone help me with the error, or has anyone already
installed the CA's Key on a Smart Card, which Smart Card
and CSP shoud I use?
Thanks in advance,
Denis
- Next message: Jeff: "Re: Certificate Authority Error"
- Previous message: Nils Magne Lunde: "Re: Network Service unable to add spn"
- Next in thread: Steve Riley [MSFT]: "Re: CA's Key on Smart Card Problem"
- Reply: Steve Riley [MSFT]: "Re: CA's Key on Smart Card Problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
