The following certificate types are supported:
Note: The certificate file must be DER encoded or Base64 (not PKCS #7).
If a PFX file is selected, the private key and corresponding certificate will be imported to the eToken. You will be asked if CA certificates should be imported to the eToken, and you will be asked to enter the password (if it exists) protecting the PFX file.
In the case of a CER file (which contains only X.509 certificates), the program checks if a private key exists on the eToken. If the private key is found, the certificate is stored with it. If no private key is found, then you are asked if you want to store the certificate as a CA certificate.
When downloading a certificate to the computer and then importing the certificate to the eToken, remove the certificate from the local store and reinsert the eToken before using the certificate to sign and encrypt mail. This ensures you are using the certificate and keys stored on the eToken.
Note: It is not possible to import a certificate onto eToken Rescue.
To import a certificate:
To open eToken PKI Client Properties do one of the following:
Right-click or double-click the eToken tray icon and select Open eToken Properties from the menu.
From Windows desktop select Start > Programs > eToken > eToken Properties.
The eToken PKI Client Properties window opens.
Click the Advanced View icon
The Advanced View window opens.
Do one of the following:
In the left pane of the Advanced View window, select the required eToken and click the Import Certificate icon
In the left pane of the Advanced View window, right click the required eToken Right-click and select Import Certificate from the shortcut menu
The Import Certificate window opens.
Select one of the following
Import a certificate from my personal certificate store (Note: This is available in Windows only)
Import a certificate from a file
If you select the personal certificate store, a list of available certificates is displayed. Only certificates that can be imported on to the eToken are listed. These are:
Certificates with a private key already on the eToken
Certificates that may be imported from the computer together with its private key
If you select Import a certificate from a file, the Choose a certificate window opens.
Select the certificate to import and click Open.
If the certificate requires a password, the Password window opens.
Enter the certificate password.
The Import Operation window opens asking if you want to store the CA certificates on the eToken.
Select Yes or No.
All requested certificates are imported, and a confirmation message opens.