carequest

Information Center

Server requesting certificate

The server you are trying to connect to is requesting your certificate. Type the location and password of your certificate. If you cannot make changes, the administrator who configured this session locked these fields.

Requesting server
This is the name of the server to which you are trying to connect. Click Details to see more information about the server's certificate.
What do you want to do?
  • Attempt to connect without my certificate

  • Whether you can connect without a certificate is dependent on the server you are trying to connect to. The server might give you access at a lower security level, or it might not allow any access without a certificate.

  • Send my certificate
  • Click Send my certificate if you have a certificate to send.

    Certificate Source

    • If the certificate is stored on your system or in a file accessible using a URL:
      1. Click PKSC12 or PFX file.
      2. Type the URL or path and filename of the certificate that you want to send or click Browse to locate the file on the local file system.

        Sending and receiving files through URLs depends on the protocols your browser supports. Most browsers support HTTP, HTTPS, FTP, and FTPS.

      3. Type the password that was used to encrypt the certificate. If you do not know the password, ask your administrator or the person who requested and received your certificate.
      4. Click View Certificate to see detailed information about the certificate you are sending. You must type the location and password for the certificate before you can view it.
    • If your certificate is accessible through the Microsoft Internet Explorer Personal Certificate store, click Certificate in MSIE browser or security device, and select it from the Certificate Name list. Optionally, you can choose to send any certificate trusted by the server.
Setup
Opens the Cryptographic Support Setup dialog where you can specify parameters for using a smart card for client authentication on Linux (32-bit Intel platform) in Host On-Demand. This button is accessible on all platforms so that the Administrator can setup the cryptographic module name for the user to use on Linux client, however, the user must provide the password when connecting to the cryptographic token.
For Host On-Demand to work with smart cards on Linux, in addition to installing the smart card drivers and PKCS11 library for the driver; you also need to download the PKS11 library from the HODMain page and setup LD_LIBRARY_PATH environment variable to include the directory where the shared libraries reside.
NoteThis button is only available when the Browser or security device option is selected as the Certificate Source.
  • Select Retrieve certificate before connecting if you know that this host session always requires a certificate. This streamlines the handling for future sessions.
  • How often to prompt
    • To be prompted each time the server requests a client certificate, select Prompt on each connection.
    • To be prompted once each time Host On-Demand has been started, select Prompt the first time after Host On-Demand is started.
    • If your certificate is in a password-protected file and your client supports storing preferences locally, choosing Prompt only once causes Host On-Demand to prompt for the password the next time the connection is made, but never after that, unless the connection attempt fails.
    • If your certificate is accessed through the MSIE browser, Prompt only once can be chosen on any client, as well as Do not prompt, which disables the prompt from Host On-Demand, but not from the browser or security device.

Related topic: