TVs. Consoles. Projectors and accessories. Technologies. Digital TV

Vipnet csp 4.2 does not see the etoken container. Installation of the ViPNet CSP cryptoprovider program. How to install a copied signature container

ViPNet CSP is a free Russian crypto provider, certified by the Russian FSB as a means of cryptographic information protection (CIPF) and electronic signature. It is developed by the InfoTeKS company.

Attention

When preparing an application to connect to the 1C-Reporting service, the ViPNet CSP crypto provider is installed automatically at one of the steps of the connection wizard, so there is no need to install it separately.

Installation of the ViPNet CSP cryptoprovider program described in this article is required only when connecting an additional (new) workstation to the previous 1C-Reporting account. For more information about this, see.

To use the ViPNet CSP cryptoprovider program on your computer, you must complete the following steps:

Applying for a free ViPNet CSP distribution

To submit an application for the ViPNet CSP cryptoprovider program:

  1. Go to the InfoTecs company website at: http://www.infotecs.ru/product/vipnet-csp.html.
  2. At the bottom of the page that opens, click the “Download documentation and software” button (Fig. 1).

This will display a list of distributions. Select the one you need and follow the link with its name.

In our example, we select ViPNet CSP 4.2, because it is suitable for most operating systems.

After selecting the distribution, a page will appear on which you need to fill out an application (Fig. 3):

  1. Check the "I agree to the EULA terms" checkbox.
  2. Enter your full name, e-mail and characters from the picture.
  3. Click the "Submit Application" button.

If the application is successfully submitted, a corresponding message will appear (Fig. 4), and the data for installing the program will be sent to the specified email.

Downloading the ViPNet CSP distribution and installing the program

To install the program, unpack it from the archive file and run the installation file (Fig. 6).

Before installing the program, the License Agreement window will appear. Check the “I accept this agreement” checkbox and click the “Continue” button (Fig. 7).

In the "Installation Method" window, click the "Install Now" button (Fig. 8).

The program installation window will appear (Fig. 9).

After installing the program, the computer is rebooted (if the corresponding box is checked - see Fig. 8) for the changes to take effect.

Attention

The ViPNet CSP program must be registered within 14 days while the demo period is valid! If you do not do this, then at the end of the demo period you will not be able to sign and send reports.

Registering the ViPNet CSP program

After restarting the computer to register the program (Fig. 10):

  1. Open the Start menu.
  2. Next, go to: "All Programs" - "ViPNet" - "ViPNet CSP".
  3. Launch the "ViPNet CSP" program shortcut.

A window will appear indicating that the program needs to be registered (Fig. 11). Click the "Next" button.

Attention

If you have previously used the ViPNet CSP program (for example, an earlier version), then registration may not be necessary and all subsequent registration steps will be skipped. In this case, the program will be immediately available for use.

A registration window will appear, select “Request for registration (get registration code)” (Fig. 12).

In the “Registration request method” window, select “Via the Internet (online)” (Fig. 13).

In this case, your computer must be connected to the Internet. Click the "Next" button.

Fill in the data in the "Registration data" window (Fig. 14). Enter the product serial number from the letter that was sent when registering your application (Fig. 15).

A registration request window will appear, during which the entered data is checked (Fig. 16).

If registration was successful, a corresponding message will appear (Fig. 17).

After clicking the “Finish” button, a dialog box will appear asking you to launch ViPNet CSP (Fig. 18). You can immediately start using the program (Fig. 19).


INSTRUCTIONS

VipNet installation CSP 4.2

VNIMANIE !!!

A . Before installing VipNet CSP close all running applications .

B . Make sure , that you have sufficient rights to install the software and write information to the registry (It is recommended to install and configure with local administrator rights, The local administrator password must be non-empty ) .

IN . INperform installation and configurationVipNet CSP locally on computer, and not through the remote access client .

G . Without registration, VipNet CSP will function for 14 days and will not be able to provide the legal significance of the digital signature. Therefore, this CIPF must be registered.

Installation of VipNet CSP

1. To obtain ViPNet CSP, you must go to the official website of the developer at http://infotecs. ru/downloads/product_full. php? id_product=2096 and select the ViPNet CSP distribution corresponding to your operating system. (Fig.1)

2. Complete the established registration procedure by agreeing to the terms of the license agreement (EULA) and filling in the required fields. Click the "Submit" button. (Fig.2)

3. Follow the received link to download the product and save the specified serial number. The serial number can also be found in the letter that you will receive at the address specified in the “e-mail” field. Wait for the distribution to finish downloading and start installing ViPNet CSP file Setup . exe from archive folder ViPNet CSP \ Soft \ x 32 (or ViPNet CSP \ Soft \ x 64) .

4. In the window that appears, you must agree to the License Agreement and click the button "Continue"(Fig. 3).

https://pandia.ru/text/80/167/images/image004_71.jpg" alt="C:\Users\sergeyg\Desktop\2016-04-07_142021.png" width="387" height="206">!}

6. At the end of the installer’s work, a window will appear with information about the successful installation of VipNet CSP. You must click " Close"and agree to the request to restart the computer (Fig. 5)


https://pandia.ru/text/80/167/images/image006_56.jpg" alt="C:\Users\sergeyg\Desktop\2016-04-07_142943.png" width="428" height="260">!}

8. In the next window, select " Registration request (get registration code" and press the button « Next»(Fig. 7).

9. In the window for selecting a registration request method, select “ Via the Internet" and click " Next"(Fig. 8).

10. Next, you must indicate the serial number if it is not in the “ Serial number" And "E-mail." It was recorded by us when downloading the program from the site (see paragraph 3 of these instructions) (Fig. 9).

https://pandia.ru/text/80/167/images/image010_38.jpg" width="410 height=278" height="278">

Configuring VipNet CSP to work with eToken key carriers

12. Click the icon (shortcut) ViPNetCSP on the desktop

13. A window will open « ViPNetCSP» on the tab Key containers.

14. In the drop-down list, select the item with the official container entry on the device and click on the button Properties. A window will open "Properties of the key container...".

15. Click on the button Open. A window will open "Certificate".

16. In the window that opens, click the “Install certificate” button (Fig. 13).

17.
The Certificate Installation Wizard will start (Fig. 14). Click Next.

18.
In the next step, check the boxes " Install publisher certificates" And " Install SOS"(Fig. 15)

19.
In the next window, check the box " Specify container with private key" and click " Next"(Fig. 16)

20.
In the window that appears, check the box “ Select device", enter the device PIN and press OK. Also in this window you can save your PIN code if you check the “ Save Pin code"(Fig. 17).

certificate. You must click " Yes", and then complete the wizard by clicking the " Ready"(Fig. 18 and Fig. 19).

Fig.18

22.This completes the installation. We installed and registered VipNet CSP, and also configured it to work with eToken key carriers.

This problem may occur if you do not have permission to create files in the folder in which you are trying to save the *.p10 request file. Try creating a folder on your Desktop and selecting it as the destination for saving the request file.

You need to download and install a set of software from the personal account of the Federal Tax Service, in the subsection “Obtaining an electronic signature verification key certificate” of the “Profile” section, selecting the use option “The electronic signature key is stored on your workstation.” After restarting the PC, the “Generate a certificate request” button should have appeared in this section, then wait for the certificate to be issued, after which it can be installed in the PC storage.

To receive more detailed instructions, you need to contact the technical support of the nalog.ru portal.

These errors may occur if you are using an antivirus that is incompatible with ViPNet CSP, for example NOD32. To restore functionality:

  1. Boot Windows into Safe Mode;
  2. Run “as administrator” the file “C:\Program Files\InfoTeCS\ViPNet CSP\SafeModeUninstall.bat” for a 32-bit OS or “C:\Program Files (x86)\InfoTeCS\ViPNet CSP\SafeModeUninstall.bat” for 64 -bit.

This error indicates that it is impossible to install Microsoft Visual C++ Studio 2008 Redistributable files components. Uninstall both Microsoft Visual C++ Redistributable 2008 packages using standard Windows tools through the “Control Panel” - “Programs and Features”. Download the latest versions of the components from the Microsoft website and install them:

If the installation is unsuccessful, contact your organization's IT specialist or Microsoft technical support.

These errors occur due to incorrect operation of Microsoft Visual C++ Redistributable components.

To solve it:

  1. Uninstall both Microsoft Visual C++ Redistributable 2008 packages using standard Windows tools through the “Control Panel” - “Programs and Features”;
  2. Reboot.
  3. Download the current version of VipNet CSP from the website, which supports operation on your OS;
  4. Run the installation, select “recovery” or “start update” depending on what the installation program suggests;
  5. Reboot.

Operation with non-certified antiviruses is possible, but not guaranteed. For example, for ViPNet CSP and AVAST and AVG antiviruses to work together, you must use the current version of ViPNet CSP from the section. When using ViPNet CSP together with AVAST antivirus, you must additionally disable the behavior screen.

Currently, compatibility with this antivirus is not guaranteed. If problems arise in the operation of your OS, we recommend uninstalling the current version of ViPNet CSP by loading the OS in safe mode. Before uninstalling, you must manually start the Windows Installer service. If the Windows Installer service does not start in safe mode, apply the bat file from the folder C:\Program Files (x86)\InfoTeCS\ViPNet CSP\SafeModeUninstall.bat. If you cannot enter safe mode, you must perform a system restore from the last checkpoint.

The certificate must be checked for validity. If, when checking a certificate, the error “There is not enough information to verify this certificate” occurs, then this error means that the root certificate of the CA of the Federal Tax Service of Russia, issued on June 28, 2016, is missing in the Windows certificate store.
On this issue, we recommend that you contact the technical support of the Federal Tax Service of Russia to provide a new root certificate from the CA of the Federal Tax Service of Russia.
The received new root certificate from the CA of the Federal Tax Service of Russia must be installed in the Windows storage in trusted root certification authorities.

When trying to obtain a registration code via the Internet, a connection to the registration server of OJSC InfoTeKS cannot be established within 3 minutes, and a warning window appears with the warning “Failed to connect to the registration system server.”
In this case, check your firewall settings. Access to the registration server of JSC InfoTeKS () via TCP protocol, port 80 should not be blocked.

If two applets are installed on your external device, ViPNet CSP will recognize the external device corresponding to only one of these applets. Working with two applets at once is not supported. To use a specific applet in ViPNet CSP from those recorded on your token, in the main ViPNet CSP window on the “Connected devices” page, disable the use of all types of devices except the required one.
For example, if the JaCarta and JaCarta GOST applets are installed on the token, ViPNet CSP recognizes the JaCarta device by default. To use your token as a JaCarta GOST device, in the ViPNet CSP program, disable support for all types of external devices except eToken GOST/JaCarta GOST.

When you connect an external JCSD device to a computer running Windows Vista or Windows Server 2008, cryptographic operations using keys located on the device may take a long time to complete.
To speed up cryptographic operations using JCSD devices, we recommend updating your operating system.

When you try to sign a macro or create a signed Microsoft Access 2007 package, if there are no certificates available in the electronic signature certificate selection window, this means that you cannot sign code. Contact your CA for a certificate that has the Code Signing attribute in the advanced key usage.

If, when you try to sign an email message, signing occurs but a certificate other than the one you selected is used, it means that the specified electronic signature certificate does not contain the certificate owner's email address or that the email address does not match the email sending address. At the same time, at the moment
When signing a message, another certificate is selected from the system storage containing the email address from which the message is sent.
To resolve the error, follow these steps:
1 Create a request for a new certificate and include a valid email address.
2 Send a certificate request to the administrator of your certification authority and wait for the request to be completed.
3 Specify the received certificate as the electronic signature certificate.

If, when you try to sign an email, you receive a message that says there are no certificates that can be used to send from this email address, you should contact a CA to obtain one. The certificate must include your email address and include the Secure Email extension in the Enhanced Key Usage (Enhanced Key) field.

If, when selecting a certificate for signing, the ViPNet CSP – “Initializing key container” window opens, this means that the private key corresponding to the selected certificate was not found. This can happen if the key container was deleted in the ViPNet CSP program. To sign a document with the selected certificate, in the ViPNet CSP – “Initializing key container” window, specify the path to the container that contains the private key corresponding to the certificate. If you do not know the location of the key container, the selected certificate cannot be used.
If you specify the path to a key container in the ViPNet CSP “Initializing a key container” window, this container will be added to the list in the “Key containers” section of the ViPNet CSP window.

If you encounter problems installing or uninstalling the program, contact technical support. When contacting, provide your employees with the program log files, which are located in the following folders:
If you are using the Windows XP or Windows Server 2003 operating system: C:\Documents and Settings\All Users\Application data\InfoTeCS\InstallerData\ViPNet CSP\Logs.
If you are using Windows Vista, Windows Server 2008 or later: C:\ProgramData\InfoTeCS\InstallerData\ViPNet CSP\Logs.

Attention! Before performing these operations, create backup copies of your key containers.

Sequence of actions:
1) Close ViPNet CSP.
2) Delete the files C:\ProgramData\InfoTeCS\adts.cfg and C:\ProgramData\InfoTeCS\adts.stg.
3) Delete the file C:\ProgramData\InfoTeCS\cont_info.dat
4) Reinstall the containers.

1. On the “ViPNet CSP Registration” page, select “Registration request (get registration code)” and click the “Next” button.
2. On the “Registration Request Method” page, select “Online.”
After selecting the registration method, you must fill in the required fields and click “Next”. ViPNet CSP registration will be performed automatically.

This error appears due to corruption of the csp.brg file from the %ProgramData%\InfoTeCS\ViPNet CSP directory.
To solve this problem you need:
1) Delete the csp.brg file from the %ProgramData%\InfoTeCS\ViPNet CSP directory;
2) Execute the program recovery script (Control Panel - Programs and Features - ViPNet CSP - Restore);
3) Launch the program and go through the registration procedure again using the information from the file “%ProgramData%\InfoTeCS\ViPNet CSP\reginfo.txt”, where “Serial number” is the serial number, “Registration code” is the registration code.

This version is not intended for installation on Windows 10. Currently, a beta version of VipNet CSP 4.2.948766 has been released that supports this OS.

To work together ViPNet CSP and JaCarta LT you must use a special interface module. This module was developed by the company “Aladdin-RD”
You can obtain this module by contacting the Aladdin-RD company at http://www.aladdin-rd.ru/support/.
For ViPNet CSP and JaCarta LT to work correctly, the resulting module must be added to the system directories of the operating system in accordance with its bit depth: from the win64 directory to c:\windows\syswow64, from the win32 directory to c:\windows\system32.
In the near future, this module will be included by Aladdin-RD as part of the Unified Client software.
This module will not be distributed as part of ViPNet software.

As a rule, this happens due to a conflict with the antivirus installed on your PC. To exclude the possibility of antivirus influence, boot into “Safe Mode” and add the “Infotecs” folder to the antivirus trusted zone.

One serial number is registered once and on one computer. You can obtain serial numbers for registering ViPNet CSP software in the required quantity free of charge on our website. To do this, you need to go to the website, click on the banner “CIPF “ViPNet CSP Crypto Provider””, select the ViPNet CSP distribution you need (depending on your operating system) and fill out the form to receive a link to download the program. After this, you will receive a letter that will contain a link to download ViPNet CSP and a serial number for registration.

The distribution of cryptographic information protection tools (CIPF), which is ViPNet CSP, is carried out in strict accordance with the requirements of the FSB of Russia. Each instance of ViPNet CSP is subject to mandatory registration. You can order a disk with the ViPNet CSP distribution kit and the corresponding documentation through the commercial department by sending a request to.

Installing a personal certificate from the deviceeToken. TechnologyVipNetCSP.

    Insert the eToken device into the USB port of your computer.


Click the button Add" and select "Select device"

    From devices, select the desired eToken, in container name the desired container accordingly. Then click " OK» . Next, you need to agree to installing certificates in the “Personal” storage.

Contacts: 228-28-38 – technical support

Application

Installing drivers for working with the deviceeToken

    Open the folder on the eToken drive. Select the distribution that matches your operating system 1:

    For 32 bit systems 2 - PKIClient-x32.msi

    For 64 bit systems - PKIClient-x64.msi

1 The operating system bit depth can be found out as follows. Open the “Start” menu - “Control Panel” - “System”. The “System type” field indicates the bit depth of the operating system.

2 Installation files can also be downloaded from the website www. tax. cek. ru in the “Technical Support” - “Download” section, “Additional Software” tab, paragraphs 3.14-3.15


There are two options by which an electronic signature can be established:

  1. Only the public key signing certificate can be installed into the system, and the signature container (containing the private key) will remain stored on the electronic signature medium. In this case, each time you need to use a signature, you will need to have electronic signature media inserted into your computer.
  2. Both the signature container itself (containing the private key) and the public signature key certificate can be copied to the system. In this case, to use the signature, you will not need to insert an electronic signature medium, because the private key is stored on the computer.
We strongly recommend installing only a public key signing certificate! Copying a signature container can potentially lead to a compromise of the electronic signature!

The main principle of storing an electronic signature is that only the owner of the signature has access to it. The use of electronic signature media such as a USB token is excellent for this. If an electronic signature is copied and subsequently stored on a computer, it can be compromised, for example, as a result of a computer virus, hacking, or gaining access to the computer of other persons (both external to the organization and internal).

Preliminary actions

  1. Make sure that the electronic signature media driver is installed (for example, RuToken)
  2. Launch ViPNet CSP (the launch shortcut is on the desktop)

Make sure that the "Enable support for ViPNet CSP via MS Crypto API" checkbox is present. If it is missing, turn it on.

How to install a public key signing certificate?

1. Insert RuToken into the USB connector and launch ViPNet CSP

2. Go to "Containers" and click the "Add" button

In the window that appears, select "Select a device", enter the PIN code of the RuToken device and click OK

If there is a container of electronic signature keys on the RuToken device, a window appears asking you to install a user certificate. If necessary, you can click the "Certificates" button and view the certificate stored in the container. Next, you need to click the “Yes” button, and the certificate will be installed in the system storage.

How to install copied signature container?

1. Insert the USB Flash into the USB connector (or copy the container to a disk folder) and launch ViPNet CSP. If you use USB-Flash, then the container should be in the \Infotecs\Containers folder (for example, d:\Infotecs\Containers\sgn-4D19-6AE0-C8CE-5A55) 2. Go to "Containers" and click the "Add" button

3. Click the "Browse" button and select the folder containing the key container (a file of the form sgn-XXXX-XXXX-XXXX-XXXX, where XXXX is a hexadecimal value)

4. Click OK. If the specified folder actually contained a key container, then ViPNet CSP will offer to install the certificate found in the container into the system storage, and you must click “Yes”



Share with friends:
Related publications