This forum is closed to new posts and
responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:
RE: SmardCard Delete Key Problem / Decrypt Message ambiguity ~August Zenhipiteretsi 12.Jan.04 09:35 PM a Web browser Notes Client All ReleasesAll Platforms
Hi Dave,
thanks for the answers - a few clarifcations please :
>>>Leaf certificates (with private keys) aren't actually deleted
from the ID file, because then you would lose access to mail that was encrypted
to that certificate -- they are just no longer displayed, and cannot be
"actively" used. When you re-add the same certificate chain again, and the
certificate becomes active once more, you will probably find that the private
key on the token is being used.
So, notes is smart enough to sign my documents ones again ? This seemed not to
work @ Version 6.02 - i double check.
>>>>>Notes doesn't currently cleanly handle having objects on the token that it
needs being deleted out from under it. I've written an SPR (DKEN5V2PRT) to add
a few more checks to the "move private key to smartcard" process.
Could you supply my a download link ? Ive searched the download section and
didnt find it - or do i need business partner access ? Furthermore - when will
this SPR be applied to an official release ?
>>>Your default signing certificate is configured in the ID file, but the default
encryption certificate is configured in the public directory. Check your person
record in the public directory that the sender is using and confirm that your
"exported" certificate is the default encryption certificate. Once the sender
is encrypting with the correct key, that particular problem should go away.
When you export a private key to the token, the copy of the key in the ID file
is deleted, so it's definitely not decrypting with a copy of the key in the ID
file.
Well, i guess you are right - the problem was the notes client didnt use x509
encryption but notes encryption. AFAIK i can only supply public keys from
signed emails - i cannot import them directly into my NAB or is there a way to
change that programmatically... i mean you were talking about the encryption
certificate settings - but arent these taken from the Domino Server NAB and not
from the Personal ?
Lastly, another issue ive got so far - how do i switch back from the smartcard
usage of an ID - currently i make a backup copy of the ID file - if i dont want
to use the smartcard anymore i just overwrite my ID file and use it instead of
the other ones... There is a menu "Enable Smartcard Login" ... shouldnt there
be an option "Disable Smartcard Login" ?
Return to top
. . . . RE: SmardCard Delete Key Problem / ... (~August Zenhipi... 12.Jan.04) 
Print this page
