Beruflich Dokumente
Kultur Dokumente
Pack
V 4.0 User Guide
Purpose
This guide:
• Explains how to install the AuthentIC Web Pack application.
• Describes the overall features of the AuthentIC Web Pack (smart card and AuthentIC
Manager applications).
Audience
This guide is aimed at all people wishing to use the AuthentIC Web Pack to perform secure
electronic communications, transactions, and trading.
CHAPTER 1 – PRESENTING THE AUTHENTIC WEB
PACK
Hardware Components
The AuthentIC Web Pack requires at least a smartcard PS/SC reader and an Oberthur IDOne
Classic smartcard;
Desktop card readers such as OmniKey CardMan or any other PC/SC compatible
Main Features
The main features of the AuthentIC Web Pack include:
• Certificate management
• Key pair generation
• Passphrase management
CHAPTER 2 – INSTALLING THE AUTHENTIC WEB PACK
To take full advantage of the AuthentIC Web Pack, your system must comply with the following
hardware and software requirements:
System Requirements
Hardware
• Pentium Processor
• 32 MB RAM (64 MB recommended)
• 10 MB available disk space, depending on the configuration
• 10 MB temporary free space for the installation
Software
• Windows 98, 2000, NT with Service Pack 3 or later, XP, Vista.
• Netscape Navigator 4.7.x, Firefox 2.0x or Microsoft Internet Explorer 7.x or later
•
*
Thunderbird or Microsoft Outlook 2000 or Express
Uninstalling
To uninstall the Web Pack, proceed as follows:
5. Access the Control Panel and click Add/Remove Programs.
6. Select the AuthentIC Card Manager from the list and click Add/Delete.
7. Click Yes to confirm.
8. Exit the Control Panel.
Note: the following screenshots have been done with Netscape. When configuring with Firefox,
they may slightly differ.
6. Click Load.
7. In the following window, enter a name that will be displayed in the Device Manager window
(left frame of the previous screenshot):
When using IE, no configuration is necessary since the Oberthur Card System library will be
automatically selected when an IDOne Classic smartcard is inserted into the reader.
CHAPTER 3 – USING THE AUTHENTIC WEB PACK
MANAGER
The AuthentIC Web Pack Manager is a tool that allows you to manage data (i.e.: keys and/or
certificates) stored in a smartcard. It also allows you to modify or unblock access codes - PIN -).
After the installation procedure is complete, select Start > Programs > AuthentIC Web Pack >
AuthentIC Manager.
The application then runs in the background and the icon appears in the system tray.
Startup
To start up the AuthentIC Manager, proceed as follows:
1. Insert your AuthentIC card in the reader.
2. Select the card reader you want to use (providing that you have more than one)
Information Provides information on the smart card. For more information, refer to the paragraph entitled
Querying Card Information on page 20.
Passphrase Enables you to change your passphrase. For more details, refer to the paragraph entitled Changing
your Passphrase on page 21.
Browser Allows you to view the card content. You can also perform specific operations such as generating a
new key pair (see page 13).
Received a .P12 (user profile) or .PFX (Personal Information Check the Import an existing certificate with its
Exchange) file private key box, click Next and go to Loading a
certificate with an associated key pair.
Not received a .P12 file Check the Generate a key pair box, click Next and
go to Generating a key pair.
Procedure
1. Access the main window and select the Browser tab.
2. Double-click the main folder and click the + icon(s) to expand the structure.
3. Left-click the relevant folder to select it, and then click the icon to generate a new key pair:
This section describes the main operations that can be performed on certificates.
Main Cases
The main actions that can be performed using the Card Manager within the scope of this guide
include:
• Importing a certificate
• Exporting a certificate
• Removing a certificate
• Installing a certificate
Importing a Certificate
If you already have a certificate that you use for another application and wish to use in conjunction
with the AuthentIC Web Pack, you can import it from the relevant directory on your system to your
card.
To do so, proceed as follows:
1. Access the main window and select the Browser tab.
2. Double-click the main folder and left-click the + icon(s) next to the items to expand the
structure.
3. Click the folder into which the certificate is to be imported, and then click the Import a
certificate icon, as shown below:
4. Browse to the directory containing the certificate to be imported. Three types of file can be
imported:
• pfx (Personal Information Exchange)
5. Select the relevant certificate and click the Open button, or simply double-click the certificate.
Note - You may have to enter a passphrase if the file to be imported is protected.
A confirmation window displays, informing you that the certificate has been successfully
imported.
6. To view the folder structure and the file that you have just imported, click the Browser tab, as
shown below:
Exporting a Certificate
If you have a certificate on your card that you wish to use for another application for example, you
can export it from the card to the relevant directory on your system.
To do so, proceed as follows:
1. Access the main window and select the Browser tab.
2. Double-click the main folder and left-click the + icon(s) next to the items to expand the
structure.
3. Click the certificate to be exported.
The certificate is highlighted:
If the certificate displays with a red cross, this means that is not certified by a certification authority.
Information Available
The following information is available, as described below:
Field Provides the…
Procedure
To access the smart card information, log into the AuthentIC Manager as described in the
paragraph entitled Startup on page 10.
The Information tab on the main window is automatically displayed.
This chapter provides all the information required to use the IDOne Classic card with your browser
or mailer or any other application compliant with the PKCS#11 or CSP standard.
Note: the following screenshots have been done with Netscape. When configuring with Firefox,
they may slightly differ.
4. Click View Certificates in the right frame. The Certificate Manager window displays the
certificates stored in your card:
Checking your certificate’s validity
6. Click the relevant certificate to select it and click the View button.
The content of your certificate displays:
The SSL (Secure Socket layer) protocol allows you to send secured information over the internet
ensuring the authenticity, confidentiality and integrity of the message. To authenticate himself, the
user has to enter his own PIN code. All other operations remain fully transparent.
NB: Most browsers display a padlock or a key icon at the bottom of their window showing you that
the transaction or the page displayed is fully secured.
With Internet Explorer
Reading your certificate
To read your certificate in Internet Explorer, proceed as follows:
1. Insert the AuthentIC smart card in the card reader.
2. Run Internet Explorer.
3. In the Tools menu, click Internet Options.
4. Click the Content tab.
5. In the Certificates area, click the Certificates button to view the certificates installed.
The Certificate Manager window displays:
5. Click the appropriate Choose button (depending on whether you want to sign or encrypt a
message).
The Select Certificate window displays:
6. Select your certificate and click OK to return to the Security tab.
7. Click OK to return to the main Outlook window.
10.
To… Then check…
Prerequisites - Before sending an encrypted message, you must have received (by mail) a copy
of the recipient's public key, which is contained in the signature envelope.
11. Click Close.
12. Send your message.
Your message is sent encrypted and/or signed as requested.
With Thunderbird
In this paragraph, you will see how to first select the appropriate certificate and then use it to sign
and/or encrypt your message.
7.
To… Then click…