mToken CryptoID User Manual
All rights reserved
Revision Record
Date Revision Version Sec No. Change Description Author
2016/05/17 V1.0 Initial Version Longmai ITD
Product Name Confidentiality level
mToken CryptoID
Product version
V3.0
mToken CryptoID User Manual
| Public
Contents
MTOKEN CRYPTOID PRODUCT OVERVIEW ................................................................... 3
1 CURRENT SITUATION .................................................................................................... 3
2 CENTURY LONGMAI SOLUTION ...................................................................................... 3
MTOKEN CRYPTOID PKI CERTIFICATE UTILITY .............................................................. 4
1. DEVICE AND SYSTEM INFORMATION ................................................................................ 4
Device Information ..................................................................................................... 4
System Information and new version detection ......................................................... 4
2. USER OPERATIONS ...................................................................................................... 6
Login with User .......................................................................................................... 6
Certificates Operations............................................................................................... 7
Import certificate ....................................................................................................... 8
Export certificate ........................................................................................................ 8
Delete certificate ........................................................................................................ 9
Reset........................................................................................................................... 9
Registration / Unregistration ................................................................................... 10
Change User PIN and Name ..................................................................................... 10
3. ADMINISTRATOR OPERATIONS ..................................................................................... 11
Login with Administrator .......................................................................................... 11
Unblock User PIN ...................................................................................................... 11
Change SO PIN .......................................................................................................... 12
Initialize Device ........................................................................................................ 12
ABOUT CENTURY LONGMAI ..................................................................................... 14
CENTURY LONGMAI TECHNOLOGY CO., LTD .......................................................................... 14
mToken CryptoID User Manual
| Public
mToken CryptoID Product Overview
Current Situation
Today’s world is increasingly getting connected due to rapid development in information
and internet technology industry, peoples’ work, study and life-style is changing greatly
and growing more with efficiency; meanwhile, E-Commerce, E-Government, Digital
Currency, E-Banking, financial and retail sectors are accelerating utilization of digital
information resources every day. On the other hand, network security issues are
prominently increasing; whereas in traditional process of network security authentication,
“username + password” authentication method is used frequently, this kind of strategy is
easy but insecure.
Century Longmai Solution
PKI systems and network security technology based on portable hardware is a new and
trending development in digital security to ensure data privacy, confidentiality and
availability. Embedded with secure element and smart card chip technology, Century
Longmai’s mToken CryptoID is a PKI authenticator utilizing CCID drivers for highly robust
authentication and verification deployments across multi-industry.
The mToken CryptoID product could be seamlessly integrated with the exiting PKI
applications, like Web, E-mail, VPN, Windows Smart card logon, etc. The end users benefit
from unproblematic yet secure verification of users in web services, E-mail protection,
VPN login, Windows smartcard logon for both network and local based authentication.
mToken CryptoID User Manual
| Public
mToken CryptoID PKI Certificate Utility
mToken CryptoID PKI Certificate Utility is an easy to operate GUI application used to
conveniently manage mToken CryptoID device, it could be used to:
Check the connected device information
Import / export/delete / view certificates
Change device name
Change User Pin
Unblock User Pin
Reset/Initialize
Others
1. Device and System Information
Device Information
Start the PKI Certificate Utility, all the connected devices will be auto-detected and listed
in the left Panel, select a device name, detailed information about connected token will
be shown in the right Panel.
System Information and new version detection
The system information is displayed when clicked on the “System Information” tab from
the utility.
mToken CryptoID User Manual
| Public
The “Rescan” button is to rescan the system and update the information.
The “Export” button is to export the system information into a .txt file for diagnosis.
The “Update” button is for new version detection. On release of a newer version of the
middleware, this button downloads the same helps in the upgradation of the middleware.
mToken CryptoID User Manual
| Public
2. User Operations
There are 2 users for the connected token:
User- The User is to manage the certificates inside the token
Administrator- The Administrator who can manage the token operations such as
Unlock the token if its locked, initialize the token and so on
Login with User
After clicking “User” item under the connected device, the Login tab is displayed as:
Input the correct User PIN and Click the “Login” button, the other operation items are
listed under the token, and all certificates inside the token are also shown on the right
panel.
Note: The token will be locked after ten time’s wrong PIN inputs. In this case, user has to
contact the developer to unlock it. The remaining trials are independent of reconnection
and time, but will restore to default value after successful PIN verification.
mToken CryptoID User Manual
| Public
Certificate Operations
The certificates could be operated from the certificate management form after clicking
the “Certificates” item firm the left panel.
After User has successfully logged in, all containers and certificates are listed.
Double-click the “Certificate” or click the “View” button to see the detailed information
in the Certificate dialog box, for example:
mToken CryptoID User Manual
| Public
Import certificate
To import certificate into the device:
1. Click “Import Certificate” button.
2. Click Browser button to select a pkcs12 file of certificate, input its correct password
and select the type of the key, then click OK button to import the certificates into
the token.
Note: A new container will be created for each imported certificate, if there are multiple
certificates inside the pkcs12 file, all of them are imported into different containers.
Export certificate
The certificate could be exported by selecting a certificate and click “Export Certificate”
button:
mToken CryptoID User Manual
| Public
Delete certificate
You can delete the certificate quickly by selecting the container and click “Delete
Certificate” button.
Note: You can only delete certificate through selecting the container.
Reset
All certificates inside the token will be deleted when the “Reset” button of the token is
clicked on.
Note: The user PIN is required to reset the token.
mToken CryptoID User Manual
| Public
Registration / Un-registration
The “Registration” and “Un-registration” are used to register/unregister the certificates
into the IE manually.
All certificates are registered when the token is connected and unregistered after it’s
disconnected automatically, these 2 buttons here are only used for testing purpose.
Change User PIN and Name
To change User PIN, select “Change User PIN” in the left panel, and input the old User
PIN, the new User PIN and the confirmed PIN, and then click “Set” button.
To change the token’s name, select “Change Token Name” in the left tree and input
a new name in the dialog box, click “Set” to save changes.
mToken CryptoID User Manual
| Public
3. Administrator Operations
Login with Administrator
Select “Administrator” under the connected token and input the correct SOPIN to login
After login successfully, all operations for administrator are listed.
Unblock User PIN
If the user PIN is locked, it could be unlocked with SOPIN. Select “Unblock” and input
correct SOPIN, new user PINs and click “Unblock” button to reset the user pin.
mToken CryptoID User Manual
| Public
Change SO PIN
To change the SO PIN, input the correct old SO PIN and new SO PIN, then click “Change
SO PIN” button from the panel:
Initialize Device
Select Initialize item from the left tree under “Administrator”, input all initialization
configurations and click “Initialize” button and input the correct SO PIN. If successfully,
the token is initialized with the configuration.
mToken CryptoID User Manual
| Public
Note: Initialize function should be used carefully, because all containers and certificates
will be cleared during this process. In addition, all PINs (including SO PIN) will be reset.
mToken CryptoID User Manual
| Public
About Century Longmai
Established in 2003, Century Longmai Technology Co., Ltd is one of the most leading
information security device vendors in China with over 12 years’ experience developing
latest generation of digital security solutions and products for secure information access
and transmission. Our product portfolios include PKI dongles, wireless PKI tokens, OTP
tokens, smart card, smart card readers, electronic document protection solution, software
license dongles, Smartcard readers and OEM services. Proved to be secure and convenient,
our solutions and products are dedicated to help customers build safe, efficient and
sustainable networks, financial systems and enjoy secure access to data and information
everywhere whenever they want.
Century Longmai Technology Co., Ltd
3rd Floor, GongKong Building, No.1, WangZhuang Road, Haidian District, Beijing, China
Postcode: 100083
Tel: (86) 10-62323636 | Fax: (86) 10-62313636
Sales E-mail: [email protected] Support E-mail: [email protected]
Website: http://www.longmai.net