The following certificate types are supported:
If a PFX file is selected, the private key and corresponding certificate will be imported to the eToken. You will be asked if CA certificates should be imported to the eToken, and you will be asked to enter the password (if it exists) protecting the PFX file.
In the case of a CER file (which contains only X.509 certificates), the program checks if a private key exists on the eToken. If the private key is found, the certificate is stored with it. If no private key is found, then you are asked if you want to store the certificate as a CA certificate.
When downloading a certificate to the computer and then importing the certificate to the eToken, remove the certificate from the local store and reinsert the eToken before using the certificate to sign and encrypt mail. This ensures you are using the certificate and keys stored on the eToken.
To import a certificate:
Click Import Certificate on the toolbar, or right-click the token name in the left pane and select Import Certificate from the shortcut menu. The Import Certificate dialog box opens.
Select whether the certificate to import is on your personal certificate store on the computer, or on a file.
If you select the personal certificate store, a list of available certificates is displayed.
Not all certificates in the store are necessarily listed. Only certificates that can be imported on to the eToken are listed. These are:
Certificates with a private key already on the eToken
Certificates that may be imported from the computer together with its private key
If you select Import a certificate from a file, the Choose a certificate dialog box opens.
Select the certificate to import and click Open.
If the certificate requires a password, a Password dialog box opens.
Enter the certificate password. A dialog box opens asking if you want to store the CA certificates on the eToken.
Select Yes or No. All certificates requested are imported, and a confirmation message opens.