6.3 Method Configuration Issues
The following issues apply to method configuration:
6.3.1 Method Activation
If a valid license key is not entered using iManager, the
method stops functioning after the 90-day trial period has expired.
Enter a valid license key to enable the method.
6.3.2 Certificate Validation Issues
If the method fails with an Invalid Certificate or Certificate
Validation Failed message, the method was unable to validate the
certificate sent by the workstation. Check the following items:
- The certificate on the smart card
is not expired or has not been revoked by the issuing Certificate
Authority.
- The method is properly configured with a trusted
root container that contains a valid trusted root certificate. See Section 5.2, Configuring Trusted Root Certificates for information
about configuring the trusted root container.
- Certificate revocation checking is properly configured.
See Section 5.3, Configuring Certificate Revocation
Checking for
more information.
- CRL and OCSP revocation checking requires connectivity
to the CRL Distribution Point or OCSP Responder. If the information
is unavailable, the validation process fails.
When using OCSP validation, the OCSP response is signed by
the responder's certificate. In order for the response to be considered
valid, the responder's certificate must be trusted. Place the OCSP
responder's trusted root certificate in the trusted root container
to identify it as trusted.