UTHSC-H Digital IDs
Middleware |  Identity Management |  Directory Service |  Authentication |  Authorization |  Digital IDs
 

Configuring Microsoft's Private Key Container

Overview

After you fill out the "Enrollement Form" for your digital ID and submit it by selecting the accept button button at the end of the form, Internet Explorer will automatically generate a set of screens that you must complete in order to protect your private key in a "Private Key Container"

If anyone other than you has physical access to your personal computer, it is imperative that you configure these screens as illustrated in the examples below.

  1. If your private key is left activated in your absence, then anyone with physical access to your computer can
    • use your legal signature - you cannot repudiate this signature,
    • gain access to your on-line resources, and

      • read ALL of your confidential documents

Configuring Your Private Key Container for High Security.

The following example screens ilustrate how you 
  • set the security level to High for you "Key Container",
  • create an identifier for your "Key Container",
  • create a password for accessing your "Key Container", and
  • create and insert a public key into your "Key Container".
creating a new rsa exchange key When the screen illustrated on the left appears, click 
  1. Set Security Level
choose a security level When asked to "Choose a security level approprite for this item contained in your Protected Storage", select 
  1. High
  2. Next >
choose password The screen to the left prompts you to 
  1. create an identity for your  private key, then
  2. create a password for accessing your key.
  3. Select Finish.
This is the password you MUST NOT FORGET!
confirm password The previous screeen configured your "Key Container", This screen asks you for your password so that IE can create your key set and put the private key in the container. 
  1. Enter you password.
  2. The "Security level should already be set to high"!
  3. If not, set it to high!
  4. Select OK
Do NOT check the "Remember password" box in the above screen! If you do, anyone can use your digital ID if your computer is left unattended!

When you have completed the last screen, the following will occur automatically 

  • your key set will be generated,
  • your private key will be securely stored in your "Private Key Container",
  • the public key will be sent to the U. T. Houston Certificate Authority (CA) for approval.
Your public key will be certified once 
  • you identity has been verified by a local registration administrator (LRA), and
  • the LRA approves certification.
Upon certification of your public key, 
  1. you will receive e-mail notification that you key is certified.
  2. a URL contained within the e-mail message will allow you to download your certified public key into the SAME computer that you used to apply for certification.
Proceed With Request for Digital ID

 
     Digital ID Home Page     
Last Modified: 
Office of Academic Computing
Copyright © 2003 The University of Texas Health Science Center at Houston