[prev in list] [next in list] [prev in thread] [next in thread]
List: ms-cryptoapi
Subject: Re: CSP and EFS
From: Peter Bodenmann <peter.bodenmann () GMX ! CH>
Date: 2001-10-16 12:52:32
[Download RAW message or body]
Hi,
if you wish to use another certificate than the autoenrolled one, you have
to configure it manually.
Note that smartcard CSPs for EFS are not supported by microsoft, since there
are some issues:
1. The EFS driver is not associated with a window station, therefore all
contexts are acquired as silent. This leads to problems when the smartcard
is not in the reader or the pin has to be presented first.
2. If the encrypted file is on the server, it won't be possible to access
the private key on the smartcard which is inserted at a client requesting
the file.
HTH,
Peter
> -----Original Message-----
> From: Microsoft Cryptographic API
> [mailto:CryptoAPI@DISCUSS.MICROSOFT.COM]On Behalf Of KONIG Laurent
> Sent: Montag, 15. Oktober 2001 16:50
> To: CryptoAPI@DISCUSS.MICROSOFT.COM
> Subject: CSP and EFS
>
>
> Hi,
>
> We want to use our CSP with EFS. When a user wants to encrypt a file, EFS
> tries to find a certificate for this user in the registry
> (...\EFS\CurrentKeys\CertificateHash) but the first time the entry in the
> registry does not exist. In this case EFS tries to open the MY store to
> locate EFS certificates.
>
> Here my question : in our case the EFS certifcates are located on a smart
> card so what can we do the first time a user wants to encrypt a
> file to tell
> EFS it has to open the MY store on the smartcard ?
>
> Thanks for your help
>
> Laurent
>
> ----------------------------------------------------------------
> Users Guide http://discuss.microsoft.com/archives/mailfaq.asp
> contains important info. Save time, search the archives at
> http://discuss.microsoft.com/archives/index.html .
> To unsubscribe, mailto:CryptoAPI-signoff-request@DISCUSS.MICROSOFT.COM
>
----------------------------------------------------------------
Users Guide http://discuss.microsoft.com/archives/mailfaq.asp
contains important info. Save time, search the archives at
http://discuss.microsoft.com/archives/index.html .
To unsubscribe, mailto:CryptoAPI-signoff-request@DISCUSS.MICROSOFT.COM
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic