Solved

How to change  smartCard Pin in CSP

Posted on 2008-06-23
7
3,019 Views
Last Modified: 2013-11-15
hi all
i use CSP to access smartcards and usbtoken , but i don't know how to change smartcard pincode .
please help me !
thanks
0
Comment
Question by:ncsvietnam
7 Comments
 
LVL 2

Expert Comment

by:karampelas
ID: 21847170
It depends what windows you have. For XP/ 2003 server you will need the Smart Card Pin Tool is included as part of the downloadable Smart Card Base CSP package (KB909520) available via Windows Update. It becomes available as soon as the
Base CSP package is installed on the machine.

In Windows Vista, users can change their smart card user PIN using the secure desktop.

For exact details read the following. Their are two paragraphs that explain how to do it.
http://www.netsolutions.gemalto.com/download/070507%20WP%20Gemalto%20%20NET%20PIN%20Mgmt%20in%20Windows%20Platforms.pdf
0
 

Author Comment

by:ncsvietnam
ID: 21880839
thank you very much for your responding . but my mean is change smart Card pin by program , use Cryptography API in window platform .
0
 
LVL 2

Accepted Solution

by:
karampelas earned 125 total points
ID: 21882213
0
Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

 
LVL 1

Assisted Solution

by:KonstantinPrinz
KonstantinPrinz earned 250 total points
ID: 22236908
KB909520 installs pintool.exe into %WinDir%\system32
0
 
LVL 1

Assisted Solution

by:KonstantinPrinz
KonstantinPrinz earned 250 total points
ID: 22236910
0
 
LVL 62

Assisted Solution

by:btan
btan earned 125 total points
ID: 22970383
There is no CAPI (if the smartcard CSP support it) calls on changing the PIN but rather replaying the cached PIN (and clearing it using CryptSetParams)

The most straight forward method is via sending APDU commands like CHANGE CHV (you can get it from vendor if proprietary else by default they are the standard ISO 7816-4) to the smartcard thru the reader. It can be via SCard Commands or via PKCS#11 (if supported).

For Scard command, use Scardtransmit (see http://msdn.microsoft.com/en-us/library/aa379804(VS.85).aspx) to send the APDU

Try out the APDU player as well (to try out APDU) but be wary on PIN lockout - http://www.codeproject.com/KB/smart/SmartcardFmwk.aspx

0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to organize and manage AD group? 10 66
Thin secure Windows 10 5 97
SSL certificate pack 6 215
Obtaining a computer ssl certificate from AD PKI using the command line 2 60
This is a guide to the following problem (not exclusive but here) on Windows: Users need our support and we supporters often use global administrative accounts to do this. Using these accounts safely is a real challenge. Any admin who takes se…
The term "Bad USB" is a buzz word that is usually used when talking about attacks on computer systems that involve USB devices. In this article, I will show what possibilities modern windows systems (win8.x and win10) offer to fight these attacks wi…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question