The following certificate types are supported:
.pfx
.p12
.cer
Note: The certificate file must be DER encoded or Base64 (not PKCS #7).
If a PFX file is selected, the private key and corresponding certificate will be imported to the token. You will be asked if CA certificates should be imported to the token, and you will be asked to enter the password (if it exists) protecting the PFX file.
In the case of a CER file (which contains only X.509 certificates), the program checks if a private key exists on the token. If the private key is found, the certificate is stored with it. If no private key is found, then you are asked if you want to store the certificate as a CA certificate.
When downloading a certificate to the computer and then importing the certificate to the token, remove the certificate from the local store and reinsert the token before using the certificate to sign and encrypt mail. This ensures you are using the certificate and keys stored on the token.
Note: It is not possible to import a certificate onto SafeNet eToken Rescue.
To import a certificate:
Open SafeNet Authentication Client Tools.
Click the Advanced
View icon .
Do one of the following:
In the left
pane of the Advanced View window, select the required token and click
the Import Certificate icon .
In the left pane of the Advanced View window, right click the required token and select Import Certificate from the shortcut menu
The Import Certificate window opens.
Select Import a certificate from a file. The Choose a certificate window opens.
Select the certificate to import and click Open.
If the certificate requires a password, the Password window opens.
Enter the certificate password.
The Import operation window opens asking if you want to store the CA certificates on the token.
Select Yes or No.
All requested certificates are imported, and a confirmation message opens.