Elche41

Hello,
When I use X509 certificate as user credential, Cardspace never ask me for PIN and after a while, I got the following error :

An error occurred when communicating with the Windows CardSpace service. Une exception de type 'Microsoft.InfoCards.CommunicationException' a ete levee.

Exception interne : Une erreur interne s'est produite


Additional Information:
Microsoft.InfoCards.CommunicationException: Une exception de type 'Microsoft.InfoCards.CommunicationException' a ete levee. ---> System.ComponentModel.Win32Exception: Une erreur interne s'est produite
a Microsoft.InfoCards.NativeMcppMethods.RpcCryptoDispatchRequest(IntPtr hIdl, String contextKey, String requestName, Byte[] buffer, Int32 index, Int32 length)
a Microsoft.InfoCards.RpcCryptoRequest.Process()


I actually use the Omnikey Cardman 3821.

Edit : I use Windows XP Pro as OS


Re: Windows CardSpace (InfoCard) X509 Authentification Problems

dandrievsky

Hello, Elche41.
Try without smartcard first:
Install .pfx (.p12) into currentUser/Personal store, hold thumbprint from there.

Then you can create .crd here: https://infocard.pingidentity.com/cardspace/cards/ endpoint=4
and submit here: https://infocard.pingidentity.com/cardspace/rp/

When you use smartcard (USB-token) it usually registers approp. certificate into currentUser/Personal after insertion.





Re: Windows CardSpace (InfoCard) X509 Authentification Problems

Toland Hon - MSFT

Can you check to see if the a link to your smartcard certificate is shown in your personal certificate store That is where CardSpace looks to find the associated certificate with the given thumbprint. Once found, all the PIN dialog and private key retrieval is handled by the CSP (Cryptographic Service Provider).



Re: Windows CardSpace (InfoCard) X509 Authentification Problems

Elche41

dandrievsky wrote:
Hello, Elche41.
Try without smartcard first:
Install .pfx (.p12) into currentUser/Personal store, hold thumbprint from there.

Then you can create .crd here: https://infocard.pingidentity.com/cardspace/cards/ endpoint=4
and submit here: https://infocard.pingidentity.com/cardspace/rp/

When you use smartcard (USB-token) it usually registers approp. certificate into currentUser/Personal after insertion.



Hello,
I have remove the smartcard, insert certificate in the user store and use your card creator, and it's work fine.
After that, I have remove the certificate from the certificate store and attempt whit the smartcard but I always got the same error (Microsoft.InfoCards.CommunicationException) and Cardspace still don't ask for a PIN code


PS : With the CardSpace Error, I got the "OCS Cryptolib" error : "User login failed on card {AuthentIC Card, serial = 0000000014786418}. Error code is CRYPTOERR_FUNCTION_FAILED."




Re: Windows CardSpace (InfoCard) X509 Authentification Problems

dandrievsky

I think guys from MSFT will tell you more,
my guess that your hardware or crypto provider is not fully compatible with Cardspace stuff.




Re: Windows CardSpace (InfoCard) X509 Authentification Problems

Elche41

Hi,
finnaly i found half of a solution by updating drivers
Now i can use card reader with hardware based pin (keyboard on the reader)