Key storage management
The key storage works as safe-box for keys and certificates. You require the PIN to access sensitive data in hardware tokens.
PIN management
The application provides PIN management for hardware tokens through the following actions:
Change PIN
Reset PIN
Select a token under Tokens. Click Quick actions and under PIN management, select one to trigger the action.
Warning
Every incorrect PIN verification attempt consumes a PIN retry attempt counter. Try to avoid repetitive wrong attempts.
Change PIN: Enter Current PIN, New PIN, and Confirm PIN into each input field, and click Change PIN.
This feature enables the end-user to change their existing PIN.
Reset PIN: Enter the admin/Management token PIN (existing or new PIN, depending on the token), Enter the user PIN (the new PIN for user), and click Reset.
This feature resets the token (reinitializes it and deletes all the data) and helps in creating a new PIN for the user.
Warning
When you reset a PIN, all your keys and certificates are deleted. DigiCert Trust Assistant version 1.1.6 and earlier does not support Reset PIN for Yubico tokens.
Warning
There is NO default Admin PIN. We strongly recommend saving the PIN information.
Troubleshooting: If you have lost or forgotten your PIN and no certificates are in use on DigiCert Software Keystore, you can use the following steps to reinitialize the keystore (for Windows OS):
Exit the application.
Navigate to the
C:\Users\<User Name>\.digicert-trust-assistant
folder.Rename the
tokens
folder.Relaunch the application and open the dashboard.
Navigate to DigiCert Software Keystore.
Initialize the token again (remember the PIN information) to reset the keystore.