Password for the electronic signature certificate. Instructions for using the CryptoPro PIN code when signing several documents - Instructions - JSC "TEK-Torg" Forgot the PIN code from the digital signature
This page contains answers to frequently asked questions that arise when working with EDS. Select the question you are interested in, open it and follow the instructions clearly.
WOscripts.com - JavaScript - Contractible Headers Script
1. Obtaining an EDS
To obtain an EDS, you can fill out a registration card on our website (in the "Obtaining an EDS" section), or on the site where you learned about us, or contact the nearest CA.
When applying to the CA, you must have the following documents with you:
identity documents (standard - a copy of the passport);
documents confirming the existence of a legal entity (certificate of TIN, Unified State Register of Legal Entities, etc.);
a power of attorney for the FL on empowering him to perform certain actions from the organization;
upon receipt of an EDS for the head, an order for appointment to a position (decision on election).
Additional information required by the CA in accordance with its regulations is not regulated by law. In practice, each CA has its own list of documents for obtaining an EDS.
2. EDS does not work
1. The private key on the specified container does not match the public key in the certificate. We check all closed containers, you may have chosen the wrong one. If we do not find the desired container, you must contact the CA to reissue the EDS
2. The certificate is not valid (certificate is not valid)
3. There is no trust in this certificate. You need to install the root certificates of your CA according to the instructions. To do this, they can be downloaded from the AETP website or found on digital media supplied with the EDS.
4. CryptoPro has expired. You must enter the license key of the CryptoPro program from the documents supplied with the EDS of your CA.
5. Capicom is not installed Download Capicom and install it with the browser closed and configure the browser according to the instructions of the TP on which you plan to work.
6. No valid certificate found (or no certificate selection shown)
Install the EDS according to the instructions of the CA
Check the validity period of the certificate (maybe it has expired)
Install the root certificate of your CA
Install CAPICOM with the browser closed
3. Is there a possibility of EDS hacking or forgery?
According to most experts, it is impossible to forge (hack) an EDS - this requires a huge amount of calculations that cannot be implemented with the current level of computer technology and mathematics in an acceptable time, that is, while the information contained in the signed document remains relevant.
Additional protection against forgery is provided by certification by a certification authority of the public key of the signature.
4. An EDS user with administrator rights quit. How to be?
5. Forgot the EDS password. How to recover the key?
Standard passwords: Rutoken 12345678, Etoken 1234567890
If you forgot the password on the rutoken, you need to use the Rutoken console, which is installed along with the driver and is available from the Control Panel (Windows). This applies to the case if the User knows the password (pin-code) of the Administrator, and he needs to unlock the token (reset the counter of the number of incorrectly entered passwords to 0).
If the carrier is a token, you need to contact the CA.
6. How to digitally sign a word file
A document created in Microsoft Office Word is signed with an EDS, the private key of which was generated by the EDS tool no earlier than Crypto-Pro 3.0. Before signing, you need to check the Crypto-Pro core (Start / Control Panel / Crypto-Pro / General. The version of Crypto-Pro will be indicated on the tab and then “build” will stand - this is the core). It is advisable to install the product of the latest build.
Now we sign the document itself
The document must first be saved. In the menu, select Tools / Options / Security / Digital signatures / certificate, click "OK" and sign the document. If the certificate is not registered in Personal, the document cannot be signed. Save the document. Select Office button / Prepare / Add digital signature / Specify the purpose of signing the document (for example, accreditation) / Select signature / sign. The message "This document contains a digital signature" will appear. A red emblem will appear on the panel.
7. Where can I get an EDS for free?
Free EDS receive only state. organizations in the divisions of the Federal Treasury
8. Can an individual receive an electronic signature?
An individual can also receive an EDS. Currently, this service is most in demand for the participation of individuals in auctions on electronic trading platforms for bankruptcy (sale of bankrupt property). To obtain an EDS, individuals need to contact the CA, having with them:
Passport of a citizen of the Russian Federation;
Certificate of assignment of TIN.
9. Is there a universal digital signature for general use?
There is currently no universal EDS that would work in electronic auctions (both state and commercial) and with the help of which it would be possible to submit reports.
10. Where can I get training on working with EDS?
You can get training in the training center of the Association of Electronic Trading Platforms. Seminars are held regularly on the territory of most subjects of the Russian Federation.
11. How many days is the EDS done?
12. Can I transfer my digital signature to a colleague during the holidays?
No. Responsibility, according to the Federal Law on EDS, is borne personally by its owner.
13. Help! I deleted the signature from the flash drive, what should I do?
Contact the CA to restore and reissue the EDS
14. Will the contract be valid if I sign it today (my EDS expires tomorrow), and my partner in a week (at the time of signing by the partner, my signature will no longer be valid, but when I signed it, it was still working)?
If the document is signed in accordance with all the rules and the validity of the EDS at the time of signing has not expired, the contract will be valid, but it will be impossible to make changes to it after signing.
15. Can a digital signature issued for tax reporting be used on marketplaces?
No. EDS for tax reporting is not suitable for electronic trading.
16. How do you get an EDS?
EDS Received only personally by the owner of the certificate
17. How to copy a signature from a disk to a USB flash drive?
Copying the private key container:
To copy the private key container, run Start - Programs - CryptoPro - CryptoProCSP and go to the Tools tab. Click the Copy button.
The system will display the "Copy Private Key Container" window
In this window, you must fill in the following input field: Name of the key container - entered manually or selected from the list by clicking the Browse button
Search options:
The entered name specifies the key container - the switch is set to User or Computer, depending on the storage where the container is located;
Select a CSP to search for key containers - the required cryptographic provider (CSP) is selected from the proposed list.
You can also select a container that matches the certificate installed on the system. To do this, instead of the Browse button, click By certificate and select from the list of certificates installed in the user's personal stores, or, if you have administrator rights, on the local computer, the certificate whose container you want to copy;
If a password is set for access to the private key, the system will ask you to enter it. Enter a password and click OK.
The system will display the "Copy private key container" window, in which you must enter the name of the new key container and select the radio button Entered name sets the key container to User or Computer, depending on where you want to place the copied container.
After entering, click Finish. The system will display a window in which you need to select the media for the copied container.
Insert the media into the reader and click OK. The system will display a window for setting a password to access the private key. Enter the password, confirm it, if necessary, set the Remember password flag (if this flag is set, the password will be saved in a special storage on the local computer, and when accessing the private key, the password will be automatically read from this storage, and not entered by the user).
If you liked the material, you can post a link to it on social networks:
Hello everyone, today I will remind you what is the password for eToken and Rutoken. They seem to be simple, but sometimes I forget them. We will also consider how Rutoken differs from eToken, since not everyone knows this, but this knowledge is very very useful. I will also tell you how, if necessary, you can change this password.
The first thing you need to explain is what eToken and Rutoken are > these are special flash media whose task is to securely store a signing or encryption certificate (private key), which is equivalent to a person’s paper signature and the whole thing is password protected. Producers issue tokens with a standard password already set:
Difference between etoken and rutoken
And so, we found out what this whole thing is used for, now let's talk about the difference between etoken and rutoken. Firstly, the rutoken has a red color, while the etoken has a red color. Secondly, they have different amounts of memory:
- In rutoken, the amount of memory varies from 32 kb to 126 kb
- Etoken has a maximum volume of 72Kb, where the user can only use 47Kb
I want to note right away that in CryptoPRO both carriers work the same way
Summary table of differences between etoken and rutoken
Etoken default password
I want to note that if you received the token in some certification center, then the password has been changed with a hundred percent probability and you need to check it with the technical support that generated it. Please note that if you enter the wrong combination a certain number of times, the token may be blocked.
These codes are also called pin codes, so do not be surprised if you hear the phrase pin rutoken by default, techies have their own language.
- for eToken - 1234567890
- for Rutoken and Rutoken EDS:
- user: 12345678
- administrator: 87654321
Now you all know what the default etoken password is, to be honest, I constantly confuse them. Although they are made simple, but apparently for me this information is not very important, and the memory reacts in its own way. Programs for changing and setting a new password Etoken PKI Client or SafeNet Authentication Client.
The Jacarta PKI/GOST media is blocked by multiple attempts to enter the wrong pin code. In this case, the connection with the FSRAR server is lost, and the data on invoices does not enter your accounting system. How to quickly unlock the key and restore work with EGAIS?
By default, the following passwords are set on all new media:
| PKI | 11 11 11 11 |
| PKI Administrator | 00 00 00 00 |
| GOST | 0987654321 |
| GOST administrator | 1234567890 |
To unlock the computer, the Jacarta Unified Client program must be installed. If the setup and installation of EGAIS was carried out by our specialists, then you already have this program.
Run the program and wait until information about the Jacarta PKI/GOST media appears in the Unified Client window.
Unblock GOST
The GOST section contains a QEP certificate issued by a certification authority. be careful- you can not remove any components from this section. After deletion, you will have to re-apply to the certification authority to issue the key.
To unlock the GOST pin code, in the top menu “Application operations”, select the first item “Unlock user PIN code”. A notification will appear on the screen that unlocking will reset the counter of erroneous input attempts.
Click "OK" and in the newly opened window enter administrator pin code Jacarta GOST 1234567890. After resetting the error counter, enter the standard user pin code GOST 0987654321.
Important: this procedure will only help reset the counter, but not change the forgotten password to a new one. If you changed the default GOST password and forgot it, you will have to initialize and write the key again in the certification center.
Unblock PKI
The PKI container contains an RSA key, which is generated in your account on the egais.ru website. In case of loss of the pin code, this section can be initialized (completely cleared), since you can rewrite the key yourself and for free, without contacting a certification authority.
1. What is an electronic signature?
An electronic signature (electronic digital signature) is a requisite of an electronic document that allows you to establish the absence of information distortion in an electronic document from the moment it is signed and verify that the signature belongs to the owner of the electronic signature key certificate. The attribute value is obtained as a result of cryptographic transformation of information using the private key of the signature. An electronic signature is similar to a handwritten signature. The use of an electronic signature in Russia is regulated by federal law No. 63-FZ of April 6, 2011.
2. How to create an electronic signature?
You can create your own electronic signature using the “Key Management” section of the main menu of the system if you have a code word that you must specify in the Client Questionnaire when visiting our office in person or in the process of opening an account online.
In order to create and use an EDS in the system, you must also sign the Agreement on the use of documents in electronic form at the company's office or in any other possible way.
3. How to change the electronic signature?
The electronic signature cannot be changed. However, you can create a new electronic signature key using the "Key Management" section of the main menu of the system. To do this, you will need to enter your code word. After creating a new electronic signature key, your old key will be cancelled.
4. How safe is it to use an electronic signature?
An electronic signature is almost impossible to forge. However, you must take some precautions. Keep the electronic signature key in places inaccessible to unauthorized persons! Do not give the key file and access password to anyone! If you suspect that your electronic signature key may be used by other persons, immediately notify the Company by phone: +7 812 635 68 65. The Client is fully responsible for the safety of the electronic signature key and passwords.
5. I have forgotten the password of the electronic signature key, what should I do?
The password of the electronic signature key cannot be recovered. If you have forgotten it, create a new electronic signature using the "Key Management" section of the main menu of the system. To do this, you will need to enter your code word. After creating a new electronic signature key, your old key will be cancelled.
If you suspect that your electronic signature keys may have been changed by third parties, immediately report this to the customer service department at tel. +7 812 635-68-65 to block access to your account and cancel the electronic signature key.
6. I forgot my code word, what should I do?
The code word cannot be recovered. We cannot send it to your e-mail address or say it over the phone. To change the code word, you need to visit one of our offices in person. Check again how you enter your code word. It must be entered exactly as you wrote it in the Client Questionnaire. Check the letter case (small or large) and keyboard layout (input language, etc.).
7. Computer requirements for signing documents with an electronic signature
The component Java Virtual Machine (JVM, Java virtual machine) must be installed on your computer and enabled in the browser settings, which is needed to launch and operate applets (loadable software modules) for key generation and electronic signature under documents.
Microsoft Internet Explorer usually comes with a Java machine from Microsoft, the Microsoft VM. You can also install a similar component from SUN (SUN Java Virtual Machine browser plug-in), which can be downloaded from the SUN website.
After downloading the file, double-click to launch the installation of the component. After the component is installed, you need to restart your computer.
The service works correctly with Microsoft VM components 3 version 5.0 and higher, as well as Sun Java browser plug-in version 1.4.2_03 and higher, 1.5.0 and higher, 1.6.0 and higher.
You can view information about the installed Java VM component (as well as enable / disable it) in the browser menu "Tools" -\u003e "Internet Options" (Internet Options) on the "Advanced" tab, in the window that opens, look for a section about VM (Microsoft VM or Java (Sun)).
The version of the Microsoft VM component can be viewed in the menu "View" (View) -\u003e "Window of the Java language" (Java console), if the option "Java console enabled" is enabled on the "Advanced" tab.
If you have both Microsoft VM and Sun Java plug-in installed and enabled in your browser, then one of them must be disabled.
If you are using a browser other than Microsoft Internet Explorer, we recommend choosing a Java browser installation package or optionally installing Sun's Java machine.
For Linux users, we recommend that you install at least version 1.5.0 of Sun's Java Machine, which can be downloaded from