6.3 Method Configuration Issues

The following issues apply to method configuration:

6.3.1 Method Activation

If a valid license key is not entered using iManager, the method stops functioning after the 90-day trial period has expired. Enter a valid license key to enable the method.

6.3.2 Certificate Validation Issues

If the method fails with an Invalid Certificate or Certificate Validation Failed message, the method was unable to validate the certificate sent by the workstation. Check the following items:

  • The certificate on the smart card is not expired or has not been revoked by the issuing Certificate Authority.

  • The method is properly configured with a trusted root container that contains a valid trusted root certificate. See Section 5.2, Configuring Trusted Root Certificates for information about configuring the trusted root container.

  • Certificate revocation checking is properly configured. See Section 5.3, Configuring Certificate Revocation Checking for more information.

  • CRL and OCSP revocation checking requires connectivity to the CRL Distribution Point or OCSP Responder. If the information is unavailable, the validation process fails.

    When using OCSP validation, the OCSP response is signed by the responder's certificate. In order for the response to be considered valid, the responder's certificate must be trusted. Place the OCSP responder's trusted root certificate in the trusted root container to identify it as trusted.