Guest Unai Castro Posted September 9, 2008 Posted September 9, 2008 Hello, I have a problem to change with CLM the Admin key in Smartcards, with a Microsoft Base CSP, in this case Gemalto's cards. I can initialize these cards with a new Admin key selecting diversify Admin Key in the template profile, after I issue a new card with CLM the Admin Key changes, for example to 00..0001, and I can retire and reuse this card any times that I need. The problem appear when I want use these cards in another profile template, I cannot initialize these cards (I think because de Admin Key isn’t the standard: 00..0000) and I cannot find where specify the actual key of the card. It’s possible specify in CLM the actual Admin Key in the profile template? If this not possible is any way to change the Admin Key to reset to the original situation? Thanks, -- Unai Castro MCSA 2003 Quote
Guest Brian Komar \(MVP\) Posted September 9, 2008 Posted September 9, 2008 In the retire workflow, choose the option to reset the Admin Key It will then reset the Admin Key to the Admin Key specified in the smart card details. Brian "Unai Castro" <UnaiCastro@discussions.microsoft.com> wrote in message news:7B7015B5-FE9D-4E6A-925D-0C143A9120DD@microsoft.com...<span style="color:blue"> > Hello, > > I have a problem to change with CLM the Admin key in Smartcards, with a > Microsoft Base CSP, in this case Gemalto's cards. I can initialize these > cards with a new Admin key selecting diversify Admin Key in the template > profile, after I issue a new card with CLM the Admin Key changes, for > example > to 00..0001, and I can retire and reuse this card any times that I need. > The > problem appear when I want use these cards in another profile template, I > cannot initialize these cards (I think because de Admin Key isn’t the > standard: 00..0000) and I cannot find where specify the actual key of the > card. > > It’s possible specify in CLM the actual Admin Key in the profile template? > If this not possible is any way to change the Admin Key to reset to the > original situation? > > Thanks, > -- > Unai Castro > MCSA 2003 </span> Quote
Guest Unai Castro Posted September 9, 2008 Posted September 9, 2008 Perfect. Thanks. Our mistake was that we didn’t reset de Admin Key in the directive for retire the smartcard, because for this is necessary own the card when card is retired. However I probe this solution and I look the possibility to change the template after the cards are issued and I can retire the cards if I lose. Thanks again Unai "Brian Komar (MVP)" wrote: <span style="color:blue"> > In the retire workflow, choose the option to reset the Admin Key > It will then reset the Admin Key to the Admin Key specified in the smart > card details. > Brian > "Unai Castro" <UnaiCastro@discussions.microsoft.com> wrote in message > news:7B7015B5-FE9D-4E6A-925D-0C143A9120DD@microsoft.com...<span style="color:green"> > > Hello, > > > > I have a problem to change with CLM the Admin key in Smartcards, with a > > Microsoft Base CSP, in this case Gemalto's cards. I can initialize these > > cards with a new Admin key selecting diversify Admin Key in the template > > profile, after I issue a new card with CLM the Admin Key changes, for > > example > > to 00..0001, and I can retire and reuse this card any times that I need. > > The > > problem appear when I want use these cards in another profile template, I > > cannot initialize these cards (I think because de Admin Key isn’t the > > standard: 00..0000) and I cannot find where specify the actual key of the > > card. > > > > It’s possible specify in CLM the actual Admin Key in the profile template? > > If this not possible is any way to change the Admin Key to reset to the > > original situation? > > > > Thanks, > > -- > > Unai Castro > > MCSA 2003 </span> > </span> Quote
Guest Unai Castro Posted September 19, 2008 Posted September 19, 2008 Hello, When we try to initialize a card, with a new Admin key (a 48 digits random hexadecimal key), we receive an error indicating the PIN is wrong. We have try to write a pin with all A’s (AA….AAAA) but we get the same result. Otherwise, writing a pin 00..000A the card initialization works properly. I have searched for any documentation in the thechnet library about the format of de Admin key and for this error exactly but without success. Why we can’t use any pin if it had 48 hexadecimal digits? There is any format restriction for the Admin Key?-- Thanks, Unai Castro MCSA 2003 "Brian Komar (MVP)" wrote: <span style="color:blue"> > In the retire workflow, choose the option to reset the Admin Key > It will then reset the Admin Key to the Admin Key specified in the smart > card details. > Brian > "Unai Castro" <UnaiCastro@discussions.microsoft.com> wrote in message > news:7B7015B5-FE9D-4E6A-925D-0C143A9120DD@microsoft.com...<span style="color:green"> > > Hello, > > > > I have a problem to change with CLM the Admin key in Smartcards, with a > > Microsoft Base CSP, in this case Gemalto's cards. I can initialize these > > cards with a new Admin key selecting diversify Admin Key in the template > > profile, after I issue a new card with CLM the Admin Key changes, for > > example > > to 00..0001, and I can retire and reuse this card any times that I need. > > The > > problem appear when I want use these cards in another profile template, I > > cannot initialize these cards (I think because de Admin Key isn’t the > > standard: 00..0000) and I cannot find where specify the actual key of the > > card. > > > > It’s possible specify in CLM the actual Admin Key in the profile template? > > If this not possible is any way to change the Admin Key to reset to the > > original situation? > > > > Thanks, > > -- > > Unai Castro > > MCSA 2003 </span> > </span> Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.