Resources: Frequently Asked Question

LATEST NEWS

TrustBearer Partnership

IDA partners with TrustBearer Labs to provide smart card integration to business web applications.

New Book: Computer Theology

A new book comparing the evolution of human societies and computer networks to arrive at a theological model of the World Wide Web.

Learn More

The Best Job Ever

Interested in an incredible job in identity, security, and cryptography with the lowest cost of living in most US cities ? CLICK HERE for the job description and to apply

P: 1-260-399-1648
F: 1-260-488-2455

Email Us Here

RESOURCES: Frequently Asked Questions

Q: I do not have a certificate authority. How do I get a cert ?
A: The easiest way is to use the ID Ally self signed certificate generator which is found in the File->Get Digital ID menu. You will need to share this certificate with your trusted peers in order to establish a trust network. You can also purchase certificates from Thawte, Verisign, and others.

Q: My card does not seem to trigger the Windows login PIN dialog
A: Make sure you have a working reader plugged in and that your card has been introduced to the system. For more information on this, see Introducing Card Types in the ID Ally documentation.

Q: How can I get detailed logging information ?
A: You can turn on logging in several locations. For CSP, Token Factory, and APDU logs (for a particular plugin), look at the Registry Settings in this document to learn how to set these. Logs from these will be contained in INSTALL_DIRECTORY\Logs. PKCS#11 logs can be turned on by modifying the pkcs11rc file. See the section on configuration files for more information. Higher level Windows logs can be viewed in the event viewer.

Q: Logging shows that my token is unrecognized
A: Make sure your card has been introduced to the system. For more information see Introducing Card Types in the ID Ally documentation.

Q: Where is a PKCS#11 module I can load into my application ?
A: It is contained in SYSTEM_DIRECTORY\IDAP11SHIM.dll. Be sure to use this DLL as it offers the caching service which will greatly improve the user experience.

Q: Windows login does not seem to work
A: Make sure your machine has been joined to the domain and that your client machine points its DNS to the domain controller. If the PIN dialog never comes up, make sure your card reader is working and that your card is recognized by the system.

Q: The Smart Card User certificate template does not show up in the available templates.
A: Make sure you have granted Authenticated Users the ability to Read and Enroll that template. Also make sure you have set your CA the ability to issue it.

Q: The screen does not seem to lock when I remove my card
A: Make sure the ScRemoveOption is set in the registry.

Q: My browser will not connect to the certificate enrollment station
A: Your browser may have security settings not allowing Active X and other code to run in your browser. Check your browsers security settings. Also, make sure IIS is not configured to require client side certificate authentication. You cannot authenticate with a certificate that you have not enrolled for yet.

Q: I am getting the following error when installing: Error 2755: The system cannot open the device or file specified. Server returned unexpected error 110 attempting to install package ....
A: Make sure you are installing from a local drive. This error will occur if ID Ally is being installed from a mapped network drive.

1 - 2 - 3 - 4