Etoken is not visible in PKI Client. What to do if the hardware key for egais is not found? The system does not see the rootken

In order to check the readiness of the Rutoken key identifier to be configured to work with EGAIS, open the "Rutoken Control Panel" - the "Administration" tab - the "Information" button - and check the status opposite the "Microsoft Base Smart Card Crypto Provider" field:

Supported

This status means that the Rutoken electronic identifier is already ready for configuring the default encryption provider. Go to the second paragraph of this manual - "Changing the default encryption provider"

If the status is Supported, go to

If next to the field "Microsoft Base Smart Card Crypto Provider" there is a status Activate or Not supported, go to step 2.

2. Enabling support for the encryption provider for Rutoken EDS

To check the readiness of the Rutoken key identifier for setting up for working with EGAIS, open the "Rutoken Control Panel" - the "Administration" tab - the "Information" button - and check the status opposite the "Microsoft Base Smart Card Crypto Provider" field:

Activate

If a non-default PIN is set for the User or Administrator, it will need to be entered during activation.

Please note that if both PIN-codes do not correspond to the default values, for activation it will be necessary to enter successively the PIN-code of the Administrator, then the User.

If you do not know one or both of the PINs, you must contact the company that provided you with the key ID to obtain the PINs.

If it is not possible to find out the current values of the PIN codes, there is only the option of formatting the Rutoken identifier to set new values for the PIN codes. Please note that while formatting the key identifier, all content is permanently deleted.

After the activation procedure, the status in the "Microsoft Base Smart Card Crypto Provider" field should change to "Supported"

to continue configuring the Rutoken key identifier, go to Step 2.

Not supported

The "Not supported" status is displayed if an attempt is made to configure a Rutoken model that is not intended to work with EGAIS, for example or. Only the model is suitable for working with EGAIS

3. Changing the default encryption provider

Open "Start" - ("Settings") - "Control Panel" - "Rutoken Control Panel" - "Settings" tab - in the "Cryptographic Provider Settings" item, click the "Settings ..."

In the "Cryptographic Provider Settings" window, select "Microsoft Base Smart Card Provider" for the Rutoken EDS 2.0 electronic identifier.

If the RSA key pair will be generated on the computer, set the Microsoft Enhanced RSA and AES Cryptographic Provider in the lower field

To save the changes, click the "OK" button.

4. Setting up a workplace for working with the EGAIS portal.

Detailed instructions for generating a transport key in your EGAIS personal account and installing a universal transport module can be viewed.

1. The LED (light bulb) on the token may have burned out. To check it follows:

Open "Start"> "Control Panel"> "Rutoken Control Panel" (if this item is missing, then you should update the Rutoken driver).
In the "Rutoken Control Panel" window that opens, check whether the token is displayed in the "Readers" item, as well as whether the "Enter PIN" (or "Login") and "Information" buttons are active. If the buttons are active, then the light bulb is simply burned out (this will not affect the operation of Rutoken). If the buttons are inactive, then go to step 2.

2. Connect Rutoken to a different USB port.

3. Start / restart the "Smart Card" service. For this:

Select Start menu> Control Panel> Administrative Tools> Services. Find the Smart Card service in the list and check the value in the Status column.
If the service is running, you should restart it. You need to right-click on the line with the name of the service and select "Restart".
If the service is stopped, you need to start it. To do this, right-click on the line with the name of the service and select the "Start" item.

4. Reinstall the Rutoken driver after disconnecting the media from the computer.
To do this, open the menu "Start"> "Control Panel"> "Add or Remove Programs" (for Windows Vista \ Windows Seven, menu "Start"> "Control Panel"> "Programs and Features"). In the list, find the item "Rutoken Drivers ”and select“ Uninstall. ”After uninstalling, you must restart your computer and reinstall the Rutoken driver.

5. If reinstalling the driver did not help to solve the error, you must install the driver using the "Device Manager" menu. The installation procedure depends on the operating system you are using. Below are the settings for:

Driver Installation for Windows Vista \ Windows Seven

2. In the menu that opens, select "Device Manager".

3. In the window that opens, check if the list contains the item "Other devices", indicated by a yellow icon.

4. It is necessary to highlight the "ruToken" line and select "Update drivers".

6. Click on the "Browse" button, specify the directory C: \ Windows \ System32 \ Aktiv Co and click on the "Next" button. The specified directory can be hidden. In this case, select the menu "Tools"> "Folder options"> "View", set the switch "Show hidden files, folders and drives" and reselect the directory.

7. Wait until the end of the installation and click on the "Close" button.

8. After installing the driver, the device will be displayed in the "USB Controllers" section. The diode should also light up on the token.

Driver Installation for Windows XP

1. Click on the icon "My Computer" with the right mouse button and select the item "Properties".

2. In the "System Properties" window, go to the "Hardware" tab and click on the "Device Manager" button.

3. In the window that opens, check if there is an element “ruToken” (or “Unknown device”) marked with a yellow icon in the list by right-clicking on it and selecting “Update driver”.

4. In the "Hardware Update Wizard" window, select the "Install from a list or specific location" radio button.

5. In the window that opens, click on the "Browse" button, specify the path to the C: \ Windows \ system32 \ Aktiv Co \ rt USB directory and click on the "Next" button. The specified directory can be hidden. In this case, select the menu "Tools"> "Folder options"> "View", set the switch "Show hidden files, folders and drives" and reselect the directory

6. Wait until the end of the installation and click on the "Finish" button.

7. When the driver installation is complete, the device will be listed under Universal Serial Bus Controllers. The diode should also light up on the token.

6. If following the instructions did not help to correct the error, the token is most likely faulty. To verify this, you should connect Rutoken to a computer on which the driver has never been installed. If the media is working correctly, the Add New Hardware Wizard should start. If nothing happens when the rutoken is attached, then the carrier is most likely defective and needs to be replaced.

If you have saved a copy of the certificate, you should use it to work in the Kontur.Extern system, having previously installed the certificate. If no copies have survived, you need to contact the service center for an unplanned replacement of the key.

If none of the solutions below fix the problem, the key medium may have been damaged and needs to be repaired (see). There is no way to recover data from a damaged smart card or registry.

If there is a copy of the key container on another medium, then you must use it for work, having previously installed the certificate.

Diskette

If a floppy disk is used as a key container, the following steps must be performed:

1. Make sure that at the root of the floppy there is a folder containing the files: header, masks, masks2, name, primary, primary2. The files must have a .key extension and the folder name format must be xxxxxx.000.

the private key container has been damaged or deleted

2. Make sure that the "Drive X" reader is configured in CryptoPro CSP (for CryptoPro CSP 3.6 - "All removable drives"), where X is the drive letter.

Select "Start" menu> "Control Panel"> "CryptoPro CSP";

?).

3. In the CryptoPro CSP window "Select a key container" set the radio button "Unique names".

Select "Start" menu> "Control Panel"> "CryptoPro CSP";
Go to the "Service" tab and click on the "Delete remembered passwords" button;

5. How can I copy a container with a certificate to another medium?).

Flash drive

If a flash drive is used as a key carrier, you must perform the following steps:

1. Make sure that in the root of the media there is a folder containing the files: header, masks, masks2, name, primary, primary2 . The files must have a .key extension and the folder name format must be: xxxxxx.000 .

If any files are missing or formatted incorrectly, then the private key container may have been damaged or deleted. You also need to check if this folder with six files is contained in other media.

2. Make sure that the "Drive X" reader is configured in CryptoPro CSP (for CryptoPro CSP 3.6 - "All removable drives"), where X is the drive letter.

Select "Start" menu> "Control Panel"> "CryptoPro CSP";
Go to the "Equipment" tab and click on the "Configure readers" button.

If there is no reader, it must be added (see How to configure readers in CryptoPro CSP?).

4. Delete memorized passwords. For this:

Select "Start" menu> "Control Panel"> "CryptoPro CSP";
Mark the item "User" and click on the "OK" button.

5. Make a copy of the key container and use it for work (see How to copy a container with a certificate to another medium?).

6. If CryptoPro CSP version 2.0 or 3.0 is installed at the workplace, and Drive A (B) is present in the list of key media, then it must be removed. For this:

Select "Start" menu> "Control Panel"> "CryptoPro CSP";
Go to the "Equipment" tab and click on the "Configure readers;"
Select the reader "Drive A" or "Drive B" and click on the "Delete" button.

After deleting this reader, work with the floppy disk will be impossible.

Rutoken

If a Rutoken smart card is used as a key carrier, the following steps must be followed:

1. Make sure the light on the rutoken is on. If the light is off, then you should use the following recommendations.

2. Make sure that the "Rutoken" reader is configured in CryptoPro CSP (for CryptoPro CSP 3.6 - "All smart card readers").

Select "Start" menu> "Control Panel"> "CryptoPro CSP";
Go to the "Equipment" tab and click on the "Configure readers" button.

If there is no reader, it must be added (see How to configure readers in CryptoPro CSP?).

3. In the window "Select a key container" set the radio button "Unique names".

4. Delete memorized passwords. For this:

Select "Start" menu> "Control Panel"> "CryptoPro CSP" ;
Go to the "Service" tab and click on the "Delete remembered passwords" button;
Mark the item "User" and click on the "OK" button.

5. Update support modules required for Rutoken to work. For this:

Disconnect the smart card from the computer;
Select the "Start" menu> "Control Panel"> "Add or Remove Programs" (for Windows Vista \ Seven "Start"> "Control Panel"> "Programs and Features");
Select "Rutoken Support Modules" from the list that opens and click on the "Remove" button.

After removing the modules, you need to restart the computer .

Download and install the latest support modules. The distribution kit is available for download on the website of the Aktiv company.

After installing the modules, you need to restart your computer.

6. You should increase the number of containers displayed in CryptoPro CSP on Rutoken using the following instruction .

7. Update the Rutoken driver (see How do I update the Rutoken driver?).

8. Make sure Rutoken contains key containers. To do this, you need to check the amount of free memory on the media by following these steps:

Open "Start" ("Settings")> "Control Panel"> "Rutoken Control Panel" (if this item is missing, then you should update the Rutoken driver).
In the opened window "Rutoken Control Panel" in the "Readers" item, select "Activ Co. ruToken 0 (1,2) ”and click on the“ Information ”button.

If the rutoken is not visible in the "Readers" item or when you click on the "Information" button, the message "The ruToken memory state has not changed" appears, then the medium has been damaged, you need to contact the service center for an unplanned replacement of the key.

Check what value is indicated in the "Free memory (byte)" line.

As a key carrier, service centers issue rutokens with a memory capacity of about 30,000 bytes. One container takes up about 4 Kb. The free memory of a rootken containing one container is about 26,000 bytes, two containers - 22,000 bytes, etc.

If the free memory of a rootken is more than 29-30,000 bytes, then there are no key containers on it. Therefore, the certificate is contained on a different medium.

Registry

If the Registry reader is used as a key carrier, you must perform the following steps:

1. Make sure that the "Registry" reader is configured in CryptoPro CSP. For this:

Select "Start" menu> "Control Panel"> "CryptoPro CSP";
Go to the "Equipment" tab and click on the "Configure readers" button.

If there is no reader, it must be added (see How to configure readers in CryptoPro CSP?).

2. In the window "Select a key container" set the radio button "Unique names".

3. Delete memorized passwords. For this:

Select "Start" menu> "Control Panel"> "CryptoPro CSP";
Go to tab « Service "and click on the button" Delete remembered passwords ";
Mark the item "User" and click on the "OK" button.

For correct work in the EGAIS system, you need to get access to the organization's personal account on the official website. Already at this stage, many users face serious problems. One of them is that the EGAIS website does not see the key.

Most likely causes

There may be several reasons for this problem. Most often, the token cannot be found due to technical problems with the computer, lack of drivers or necessary add-ons. How do you solve each of these problems?

Wrong media inserted

Many entrepreneurs confuse the jacarta key with an electronic signature for submitting declarations to FSRAR, and try to enter their personal account using the latter. There are several ways to check if you have inserted the correct media.

Examine the electronic signature certificate issued by the certification center. It should contain the serial number JC-xxxxxxxxx and the Jacarta PKI / GOST media type.
open "One Jacarta Customer". If the flash card is detected, but the connected tokens are not displayed in the program window, you are probably using the wrong medium.

If you have not yet purchased egas, where can you get jacarta with an electronic signature? Contact a certification authority in your region that is authorized to sell this type of CEP.

The driver for the egais hardware key is not installed

You may be trying to use for egais key, driver which is not yet installed. When you connect jacarta for the first time, the basic programs are automatically installed. This is standard procedure for any new flash card and takes 1 to 5 minutes.

After the installation is complete, a success notification appears in the lower right corner.

Do not try to enter your personal account before the drivers appear - your computer has not yet established a connection with the electronic signature at this moment!

Jacarta Single Client not installed

The program was released by the token developer and is required for installation. You can download it and other drivers for protected media on the website of the token manufacturer "Aladdin - RD".

USB port does not work

There are two solutions:

Insert the token into a different port and run the check again;
check if the USB port is working.

To test, connect any other working flash card to USB. If it is also not detected, then the problem is in USB. Contact your organization's technician or repairman.

When Jacarta media is properly inserted into the computer, an indicator on the computer will light up. It may be green or orange depending on the model. If the indicator is off, then the key cannot be found for the EEGAS, since it is not connected.

Disabled add-on Rutoken EDS 2.0

When trying to log in, a message about the Rutoken web authentication library add-on may appear at the bottom of the browser screen. This software is provided by FSRAR, is secure and necessary for the correct operation of the site. To start, click "allow" in the pop-up window, and then try again.

How to use the EGAIS hardware key correctly?

So, the first problems have been solved, and you have successfully entered your personal account. How can you avoid the repetition of these situations? Insert the ECC only for work and do not use it at any other time to prevent overheating of the media. Before starting work, always check the indicator - it signals that the token is working correctly.

If none of the solutions below fix the problem, the key medium may have been damaged and needs to be repaired (see). There is no way to recover data from a damaged smart card or registry.

If there is a copy of the key container on another medium, then you must use it for work, having previously installed the certificate.

Diskette

If a floppy disk is used as a key container, the following steps must be performed:

1. Make sure that the folder containing the files is located at the root of the floppy: header, masks, masks2, name, primary, primary2... The files must have the extension. key xxxxxx.000.

the private key container has been damaged or deleted

2. Drive X(for CryptoPro CSP 3.6 - All removable drives), where X- drive letter. For this:

Select a menu;
Go to tab Equipment and press the button Configure readers.

?).

3. In the window Selecting a key container set switch Unique names(see fig. 1).

Rice. 1. Selecting a key container

Select menu Start / Control Panel / CryptoPro CSP;
Go to tab Service and press the button Delete memorized passwords;
Check item User and press the button OK(see fig. 2).

Rice. 2. Window "Delete remembered passwords"

5. How can I copy a container with a certificate to another medium?).

Flash drive

If a flash drive is used as a key carrier, you must perform the following steps:

1. Make sure that the folder containing the files is in the root of the media: header, masks, masks2, name, primary, primary2. Files must have the extension .key, and the format of the folder name should be as follows: xxxxxx.000.

If any files are missing or formatted incorrectly, then the private key container may have been damaged or deleted. You also need to check if this folder with six files is contained in other media.

2. Make sure that the reader is configured in CryptoPro CSP Drive X(for CryptoPro CSP 3.6 - All removable drives), where X- drive letter. For this:

Select menu Start / Control Panel / CryptoPro CSP;
Go to tab Equipment and press the button Configure readers.

If there is no reader, it must be added (see How to configure readers in CryptoPro CSP?).

3. In the window Selecting a key container set switch Unique names.

4. Delete memorized passwords. For this:

Rice. 3. Window "Delete remembered passwords"

5. Make a copy of the key container and use it for work (see How to copy a container with a certificate to another medium?).

6. If CryptoPro CSP version is installed at the workplace 2.0 or 3.0 , and in the list of key media there is Drive A (B), then it must be removed. For this:

Select menu Start / Control Panel / CryptoPro CSP;
Go to tab Equipment and press the button Configure readers;
Select reader Drive A or Drive B and press the button Delete.

After deleting this reader, work with the floppy disk will be impossible.

Rutoken

If a Rutoken smart card is used as a key carrier, the following steps must be followed:

1. Make sure the light on the rutoken is on. If the light is off, then you should use the following recommendations.

2. Make sure that the reader is configured in CryptoPro CSP Rutoken(for CryptoPro CSP 3.6 - All smart card readers). For this:

Select menu Start / Control Panel / CryptoPro CSP;
Go to tab Equipment and press the button Configure readers.

If there is no reader, it must be added (see How to configure readers in CryptoPro CSP?).

3. In the window Selecting a key container set switch Unique names.

4. Delete memorized passwords. For this:

Rice. 4. Window "Delete remembered passwords"

5. Update support modules required for Rutoken to work. For this:

Disconnect the smart card from the computer;
Select menu Start / Control Panel / Install and Uninstall Programs amm (for Windows Vista \ Seven Start / Control Panel / Programs and Features);
Select from the list that opens Rutoken Support Modules and press the button Delete.

After removing the modules, you need to restart the computer.

Download and install the latest support modules. The distribution kit is available for download on the website of the Aktiv company.

After installing the modules, you need to restart your computer.

6. You should increase the number of containers displayed in CryptoPro CSP on Rutoken using the following instruction .

7. Update the Rutoken driver (see How do I update the Rutoken driver?).

8. Make sure Rutoken contains key containers. To do this, you need to check the amount of free memory on the media by following these steps:

Open Start (Settings) / Control Panel / Rutoken Control Panel(if this item is missing, then you should update the Rutoken driver).
In the opened window Rutoken control panels in point Readers should choose Activ Co. ruToken 0 (1,2) and press the button Information(see fig. 5).

If the rutoken is not visible in the item Readers or by pressing the button Information The message appears RuToken memory state has not changed, it means that the medium has been damaged, you need to contact the service center for an unplanned key replacement.

Rice. 5. Program window Control Panel Rutoken.

Check what value is in line Free memory (bytes).

As a key carrier in service centers routokens are issued with a memory size of about 30,000 bytes. One container takes up about 4 Kb. The free memory of a rootken containing one container is about 26,000 bytes, two containers - 22,000 bytes, etc.

If the amount of free memory of a rootken is more than 29-30,000 bytes, then there are no key containers on it (see Fig. 6). Therefore, the certificate is contained on a different medium.

Rice. 6. Window "Information about Rutoken".