UniToken Console Tool

From SecuTech Wiki
Jump to: navigation, search


UniToken Console is used for the management of devices, including specifying user permissions and maintaining certificates and the file system.

Device Management

Logon

To log onto the device:

  1. Select the corresponding UniToken from the UniToken icon in the device list.
  2. Input the corresponding PIN in PIN.
  3. Click Logon.

'logged on successfully' message

UniToken Console device list

After successfully logging on, the current user will be granted corresponding permissions.

Logoff

To log off the device:

  1. Select the UniToken in the device list.
  2. Click Logoff.

admin permissions reverting to guest permissions after log off

Once logged off, the Console will revert back to Guest permissions. When the UniToken device is initially connected to the computer, the device automatically defaults to the "Guest" permission. If an incorrect User PIN is entered over 15 times in succession (this number, known as the Maximal Attempt Times, by default 15, but may be changed by the administrator), the UniToken device will automatically lock itself to prevent any further login attempts as a security measure, regardless if the correct PIN is entered afterwards. The administrator must log in to unlock the UniToken device.

User Management

Information about the UniToken device, such as UniToken ID, number of stored files, Current Permission, Used and Remaining Space, can be found under the User tab, as shown below. Functions that can be performed under the User tab depend on the permissions of the current user, and include Edit UniToken ID, Reset User PIN, Unlock, Edit SID and Change Admin PIN.

UniToken Console user management tab

Edit UniToken ID (Admin, User)

The UniToken ID is the label assigned to the UniToken device to facilitate quick and easy identification of the token. To modify the UniToken ID:

  1. Enter a UniToken ID (maximum 32 characters).
  2. Click OK.

inputting a new UniToken ID

Reset User PIN (Admin)

Under Reset User PIN, the Admin can reset the User PIN. To reset the PIN:

  1. Enter a new User PIN under New PIN.
  2. Re-enter the new User PIN under Verify PIN.
  3. Click OK.

resetting a user PIN

Unlock (Admin)

If the maximum number of incorrect login attempts has been reached and, as a result, the UniToken device has locked itself, the Administrator must unlock the UniToken device to continue using the UniToken. To do so, the Administrator must log in, navigate to Unlock found under User, and complete the following steps:

  1. Enter a new User PIN user under New User PIN.
  2. Re-enter the new User PIN under Verify User PIN.
  3. Set the maximum number of incorrect PIN login attempts, between 0 and 15, under Pin attempts limit (0 - 15).
  4. Click OK.

unlocking the admin account

Edit SID (Admin, User)

Software ID (SID) is a modifiable 32-bit unsigned integer that can be used a secondary form of identification for UniToken devices. The SID can be set to identify devices either through a software product’s individual serial number, or any unique or shared number to identify a batch of tokens which share some common feature(s).

To change the SID:

  1. Enter the new SID.
  2. Click OK.

inputting a new SID between 0 and 4,294,967,295

Change Admin PIN (Admin)

Logged in as the admin, to change the admin PIN:

  1. Enter the old Admin PIN under Old PIN.
  2. Enter the new Admin PIN under New PIN.
  3. Re-enter the new Admin PIN under Verify PIN.
  4. Click OK.

Change User PIN (User)

When logged into the UniToken device under the User permissions, the User has access to: Edit UniToken ID, and Change User PIN.

changing user PIN

Disconnection

If the UniToken device is removed from the computer at any point in time, the console will display a warning message to reconnect the UniToken device.

'please insert UniToken' message

File System Management

UniToken provides a secure file system for the storage of digital credentials and files using the three-level permission system. Under the File tab, a list of the files stored on the device can be viewed, including their respective number, name, size and file permission, as well as the ability to delete files and view the remaining space.

UniToken Console file system tab

Create a file

When creating a file, the filename, file size and file permission of the file to be created are required.

filename; file size; file permissiosn (guest r/w, user r/w, admin r/w)

Delete a file

To delete a file:

  1. Select the file from the File List under the File tab that you wish to delete.
  2. Click Delete.

displaying current file list

A pop-up message will appear if the file was deleted successfully.

'file deleted successfully' message

Format

Formatting the UniToken device resets the UniToken’s ID, User PIN, and Certifictate Container, located under Format as shown below. Notably, when formatting the token, the option to either enable or disable the Certificate Container is available. If the Certificate Container is created, Users can import and use certificates on the device. Without the Certificate Container, Users will not be able to do so. Note: Formatting the UniToken device irreversibly deletes all data on the device! Ensure formatting the UniToken device is required before continuing!

UniToken Console format tab

Certificate Management

In the Certificate tab, a summary of certificates on the token can be viewed. Functions available to Users include viewing and importing certificates.

UniToken Console certificate tab

View

To view a specific digital certificate:

  1. Select a certificate from the list under the Certificate tab.
  2. Click View.

A window will appear displaying all related information of the selected certificate.

certificate: issued; issuer; validity; signature algorithm; serial number; public key; version

Import

To import a digital certificate:

  1. Click Import.
  2. Browse to the directory of the certificate.
  3. With the chosen certificate selected, click Open.
  4. Input a password for the imported certificate.
  5. Click OK.

'please input certificate password' message

After importing the certificate, the certificate will appear in the list of stored digital certificates on the token.