PowerShell
PowerShell
ScMinidriver - Import a Certificate to IDPrime MD T=0 Smart Card
See more ScMinidriver Examples
Demonstrates how to import a certificate and its private key to a key container on an ID Prime MD T=0 smartcard.Note: Requires Chilkat v9.5.0.88 or later. This example only runs on Windows because ScMinidriver is a Windows-only class.
Chilkat PowerShell Downloads
Add-Type -Path "C:\chilkat\ChilkatDotNet47-x64\ChilkatDotNet47.dll"
$success = $false
# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.
$scmd = New-Object Chilkat.ScMinidriver
# Reader names (smart card readers or USB tokens) can be discovered
# via List Readers or Find Smart Cards
$readerName = "SCM Microsystems Inc. SCR33x USB Smart Card Reader 0"
$success = $scmd.AcquireContext($readerName)
if ($success -eq $false) {
$($scmd.LastErrorText)
exit
}
# If successful, the name of the currently inserted smart card is available:
$("Card name: " + $scmd.CardName)
# The IDPRime MD smart card has 4 different PIN roles:
# "user" -- Primary Card PIN
# "admin" -- Administrator PIN
# "3" -- Digital Signature PIN
# "4" -- Unblock only PIN (PUK)
# To import a certificate to the "IDPrime MD T=0" smart card, we must first PIN authenticate using "user", and then also PIN authenticate using "3" (the Digital Signature PIN)
$pinId = "user"
# (Of course, use your PIN which may be different than "0000")
$retval = $scmd.PinAuthenticate($pinId,"0000")
if ($retval -ne 0) {
$("PIN Authentication failed.")
$scmd.DeleteContext()
exit
}
$cert = New-Object Chilkat.Cert
# Load the cert + private key from a .p12/.pfx
# We got this .p12 from https://badssl.com/download/
$password = "badssl.com"
$success = $cert.LoadPfxFile("qa_data/pfx/badssl.com-client.p12",$password)
if ($success -eq $false) {
$($cert.LastErrorText)
$scmd.DeleteContext()
exit
}
# Also authenticate using "3", the digital signature PIN.
# (Of course, use your PIN which may be different than "12345678")
$retval = $scmd.PinAuthenticate("3","12345678")
if ($retval -ne 0) {
$("PIN Authentication failed.")
$scmd.DeleteContext()
exit
}
# Let's import this certificate as the "signature" key/cert in key container #6.
$containerIndex = 6
$keySpec = "sig"
# Note the last argument (the pin ID) is "3". This is the required PIN ID for the IDPrime MD T=0 smart card.
$success = $scmd.ImportCert($cert,$containerIndex,$keySpec,"3")
if ($success -eq $false) {
$($scmd.LastErrorText)
}
else {
$("Successfully imported the cert + private key onto the smart card.")
}
# Delete the context when finished with the card.
$success = $scmd.DeleteContext()
if ($success -eq $false) {
$($scmd.LastErrorText)
}