Solution
By default, the SafeNet Authentication Client treats a Qualified certificate as very sensitive and requests that the token PIN be input each time the certificate is accessed. This may cause problems when attempting to perform automated signing of a batch of documents.
In order to ignore the default SafeNet Authentication Client setting for Qualifed certificates, you must make changes to the registry. This Knowledgebase Article assumes you know how to edit the registry.
Important Note: Using Registry Editor incorrectly can cause serious problems to Windows. Ensure that you know what you are doing before making any changes as you could render your computer unusable. QuoVadis does not assume any responsibility to any damages to your computer or system made from registry changes.
- Click on the Start button, and type in REGEDIT into the search field. Click on regedit.exe. This will open the Registry Editor.
Note: As always, you should make a backup of your registry before making changes to it. If you make a mistake, you can always revert your changes by using your backup.
- In the Registry Editor, navigate to [HKEY_LOCAL_MACHINE\SOFTWARE\SafeNet\Authentication\SAC\GENERAL].
Note: You may not see the [GENERAL] key in [HKEY_LOCAL_MACHINE\SOFTWARE\SafeNet\Authentication\SAC]. If this is the case, then right-click on the [SAC] key, hover your mouse over New and select Key from the drop-down list. Rename the key to be GENERAL.
- Right-click on the [GENERAL] key, hover your mouse over New and select String Value from the drop-down list.
- Change (or rename) the new String Value to be NonRepudiationOID.
- Ensure that there is nothing in the Data field. If there is data in that field (or you are not sure), double click on the NonRepudiationOID String Value and delete everything in the Value data field. Click on OK.
- Restart your machine.
You should be able to access the Qualifed certificate on your SafeNet device for batch signing.