CLASS MACHINE
CATEGORY !!PKIClient
CATEGORY !!GENERAL
POLICY !!SingleLogon
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
EXPLAIN !!SingleLogon_help
PART !!SingleLogon NUMERIC
VALUENAME "SingleLogon"
MIN 0 MAX 1 DEFAULT 0
END PART
PART !!SingleLogonTimeout NUMERIC
VALUENAME "SingleLogonTimeout"
MIN 0 DEFAULT 0
END PART
END POLICY
POLICY !!SoftwareSlots
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
EXPLAIN !!SoftwareSlots_help
PART !!SoftwareSlots NUMERIC
VALUENAME "SoftwareSlots"
MIN 0 DEFAULT 2
END PART
END POLICY
POLICY !!PcscSlots
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
EXPLAIN !!PcscSlots_help
PART !!PcscSlots NUMERIC
VALUENAME "PcscSlots"
MIN 0 DEFAULT 8
END PART
END POLICY
POLICY !!EnablePrvCache
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
EXPLAIN !!EnablePrvCache_help
PART !!EnablePrvCache NUMERIC
VALUENAME "EnablePrvCache"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
POLICY !!TolerantFinalize
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
EXPLAIN !!TolerantFinalize_help
PART !!TolerantFinalize NUMERIC
VALUENAME "TolerantFinalize"
MIN 0 MAX 1 DEFAULT 0
END PART
END POLICY
POLICY !!TolerantX509Attributes
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
EXPLAIN !!TolerantX509Attributes_help
PART !!TolerantX509Attributes NUMERIC
VALUENAME "TolerantX509Attributes"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
POLICY !!TolerantFindObjects
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
EXPLAIN !!TolerantFindObjects_help
PART !!TolerantFindObjects NUMERIC
VALUENAME "TolerantFindObjects"
MIN 0 MAX 1 DEFAULT 0
END PART
END POLICY
POLICY !!EtvLogoffUnplug
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
EXPLAIN !!EtvLogoffUnplug_help
PART !!EtvLogoffUnplug NUMERIC
VALUENAME "EtvLogoffUnplug"
MIN 0 MAX 1 DEFAULT 0
END PART
END POLICY
POLICY !!SensitiveSecret
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
EXPLAIN !!SensitiveSecret_help
PART !!SensitiveSecret NUMERIC
VALUENAME "SensitiveSecret"
MIN 0 MAX 1 DEFAULT 0
END PART
END POLICY
END CATEGORY ;GENERAL
CATEGORY !!SyncPin
POLICY !!domain
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\SyncPin"
EXPLAIN !!domain_help
PART !!domain EDITTEXT
VALUENAME "domain"
END PART
END POLICY
END CATEGORY ;SyncPin
CATEGORY !!INIT
POLICY !!HMAC-SHA1
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
EXPLAIN !!HMAC-SHA1_help
PART !!HMAC-SHA1 NUMERIC
VALUENAME "HMAC-SHA1"
MIN 0 MAX 1
END PART
END POLICY
POLICY !!RSA-2048
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
EXPLAIN !!RSA-2048_help
PART !!RSA-2048 NUMERIC
VALUENAME "RSA-2048"
MIN 0 MAX 1
END PART
END POLICY
POLICY !!RSA-AREA-SIZE
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
EXPLAIN !!RSA-AREA-SIZE_help
PART !!RSA-AREA-SIZE NUMERIC
VALUENAME "RSA-AREA-SIZE"
MIN 0 MAX 1
END PART
END POLICY
POLICY !!LEGACY-FORMAT-VERSION
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
EXPLAIN !!LEGACY-FORMAT-VERSION_help
PART !!LEGACY-FORMAT-VERSION DROPDOWNLIST
VALUENAME "LEGACY-FORMAT-VERSION"
ITEMLIST
NAME "4" VALUE NUMERIC 4 DEFAULT
NAME "5" VALUE NUMERIC 5
NAME "0" VALUE NUMERIC 0
END ITEMLIST
END PART
END POLICY
POLICY !!RSASecondaryAuthenicationMode
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
EXPLAIN !!RSASecondaryAuthenicationMode_help
PART !!RSASecondaryAuthenicationMode NUMERIC
VALUENAME "RSASecondaryAuthenicationMode"
MIN 0 MAX 1
END PART
END POLICY
POLICY !!PrivateDataCaching
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
EXPLAIN !!PrivateDataCaching_help
PART !!PrivateDataCaching NUMERIC
VALUENAME "PrivateDataCaching"
MIN 0 MAX 1
END PART
END POLICY
END CATEGORY ;INIT
CATEGORY !!InitApp
POLICY !!AdvancedView
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\InitApp"
EXPLAIN !!AdvancedView_help
PART !!AdvancedView NUMERIC
VALUENAME "AdvancedView"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
POLICY !!ShowInTray
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\InitApp"
EXPLAIN !!ShowInTray_help
PART !!ShowInTray NUMERIC
VALUENAME "ShowInTray"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
END CATEGORY ;InitApp
CATEGORY !!UI
POLICY !!UseDefaultPassword
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\UI"
EXPLAIN !!UseDefaultPassword_help
PART !!UseDefaultPassword NUMERIC
VALUENAME "UseDefaultPassword"
MIN 0 MAX 1 DEFAULT 0
END PART
END POLICY
POLICY !!ShowDecimalSerial
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\UI"
EXPLAIN !!ShowDecimalSerial_help
PART !!ShowDecimalSerial NUMERIC
VALUENAME "ShowDecimalSerial"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
END CATEGORY ;UI
CATEGORY !!CAPI
POLICY !!PasswordTimeout
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CAPI"
EXPLAIN !!PasswordTimeout_help
PART !!PasswordTimeout NUMERIC
VALUENAME "PasswordTimeout"
MIN 0 DEFAULT 0
END PART
END POLICY
POLICY !!LogoutMode
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CAPI"
EXPLAIN !!LogoutMode_help
PART !!LogoutMode NUMERIC
VALUENAME "LogoutMode"
MIN 0 MAX 1 DEFAULT 0
END PART
END POLICY
POLICY !!AsciiPassword
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CAPI"
EXPLAIN !!AsciiPassword_help
PART !!AsciiPassword NUMERIC
VALUENAME "AsciiPassword"
MIN 0 MAX 1 DEFAULT 0
END PART
END POLICY
CATEGORY !!IEXPLORER
POLICY !!NoDefaultKeyContainer
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CAPI\IEXPLORER.EXE"
EXPLAIN !!NoDefaultKeyContainer_help
PART !!NoDefaultKeyContainer NUMERIC
VALUENAME "NoDefaultKeyContainer"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
END CATEGORY ;IEXPLORER
END CATEGORY ;CAPI
CATEGORY !!CertStore
POLICY !!PropagateUserCertificates
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
EXPLAIN !!PropagateUserCertificates_help
PART !!PropagateUserCertificates NUMERIC
VALUENAME "PropagateUserCertificates"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
POLICY !!PropagateCACertificates
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
EXPLAIN !!PropagateCACertificates_help
PART !!PropagateCACertificates NUMERIC
VALUENAME "PropagateCACertificates"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
POLICY !!SynchronizeStore
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
EXPLAIN !!SynchronizeStore_help
PART !!SynchronizeStore NUMERIC
VALUENAME "SynchronizeStore"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
POLICY !!RemoveUserCertsOnTokenRemove
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
EXPLAIN !!RemoveUserCertsOnTokenRemove_help
PART !!RemoveUserCertsOnTokenRemove NUMERIC
VALUENAME "RemoveUserCertsOnTokenRemove"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
POLICY !!AddToTokenOnNewCertInStore
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
EXPLAIN !!AddToTokenOnNewCertInStore_help
PART !!AddToTokenOnNewCertInStore NUMERIC
VALUENAME "AddToTokenOnNewCertInStore"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
POLICY !!RemoveFromStoreOnRemoveFromToken
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
EXPLAIN !!RemoveFromStoreOnRemoveFromToken_help
PART !!RemoveFromStoreOnRemoveFromToken NUMERIC
VALUENAME "RemoveFromStoreOnRemoveFromToken"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
POLICY !!RemoveFromTokenOnRemoveFromStore
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
EXPLAIN !!RemoveFromTokenOnRemoveFromStore_help
PART !!RemoveFromTokenOnRemoveFromStore DROPDOWNLIST
VALUENAME "RemoveFromTokenOnRemoveFromStore"
ITEMLIST
NAME "Never" VALUE NUMERIC 0 DEFAULT
NAME "Always" VALUE NUMERIC 1
NAME "Template dependent" VALUE NUMERIC 2
END ITEMLIST
END PART
END POLICY
POLICY !!RemoveFromTokenOnRemoveFromStoreTemplates
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
EXPLAIN !!RemoveFromTokenOnRemoveFromStoreTemplates_help
PART !!RemoveFromTokenOnRemoveFromStoreTemplates EDITTEXT
VALUENAME "RemoveFromTokenOnRemoveFromStoreTemplates"
END PART
END POLICY
POLICY !!CertsToRemoveStorePeriod
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
EXPLAIN !!CertsToRemoveStorePeriod_help
PART !!CertsToRemoveStorePeriod NUMERIC
VALUENAME "CertsToRemoveStorePeriod"
DEFAULT 7
END PART
END POLICY
END CATEGORY ;CertStore
CATEGORY !!MONITOR
POLICY !!NotifyPasswordExpiration
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Monitor"
EXPLAIN !!NotifyPasswordExpiration_help
PART !!NotifyPasswordExpiration NUMERIC
VALUENAME "NotifyPasswordExpiration"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
END CATEGORY ;MONITOR
CATEGORY !!PQ
POLICY !!pqMinLen
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqMinLen_help
PART !!pqMinLen NUMERIC
VALUENAME "pqMinLen"
DEFAULT 6
MIN 4
END PART
END POLICY
POLICY !!pqMixChars
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqMixChars_Help
PART !!pqMixChars DROPDOWNLIST
VALUENAME "pqMixChars"
ITEMLIST
NAME "Auto" VALUE NUMERIC 1 DEFAULT
NAME "Manual" VALUE NUMERIC 0
END ITEMLIST
END PART
END POLICY
POLICY !!pqMaxAge
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqMaxAge_help
PART !!pqMaxAge NUMERIC
VALUENAME "pqMaxAge"
MIN 0 DEFAULT 0
END PART
END POLICY
POLICY !!pqMinAge
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqMinAge_help
PART !!pqMinAge NUMERIC
VALUENAME "pqMinAge"
MIN 0 DEFAULT 0
END PART
END POLICY
POLICY !!pqWarnPeriod
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqWarnPeriod_help
PART !!pqWarnPeriod NUMERIC
VALUENAME "pqWarnPeriod"
MIN 0 DEFAULT 0
END PART
END POLICY
POLICY !!pqHistorySize
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqHistorySize_help
PART !!pqHistorySize NUMERIC
VALUENAME "pqHistorySize"
MIN 0 DEFAULT 10
END PART
END POLICY
POLICY !!pqNumbers
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqNumbers_help
PART !!pqNumbers DROPDOWNLIST
VALUENAME "pqNumbers"
ITEMLIST
NAME "Permitted" VALUE NUMERIC 0 DEFAULT
NAME "Forbidden" VALUE NUMERIC 1
NAME "Mandatory" VALUE NUMERIC 2
END ITEMLIST
END PART
END POLICY
POLICY !!pqLowerCase
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqLowerCase_help
PART !!pqLowerCase DROPDOWNLIST
VALUENAME "pqLowerCase"
ITEMLIST
NAME "Permitted" VALUE NUMERIC 0 DEFAULT
NAME "Forbidden" VALUE NUMERIC 1
NAME "Mandatory" VALUE NUMERIC 2
END ITEMLIST
END PART
END POLICY
POLICY !!pqUpperCase
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqUpperCase_help
PART !!pqUpperCase DROPDOWNLIST
VALUENAME "pqUpperCase"
ITEMLIST
NAME "Permitted" VALUE NUMERIC 0 DEFAULT
NAME "Forbidden" VALUE NUMERIC 1
NAME "Mandatory" VALUE NUMERIC 2
END ITEMLIST
END PART
END POLICY
POLICY !!pqSpecial
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqSpecial_help
PART !!pqSpecial DROPDOWNLIST
VALUENAME "pqSpecial"
ITEMLIST
NAME "Permitted" VALUE NUMERIC 0 DEFAULT
NAME "Forbidden" VALUE NUMERIC 1
NAME "Mandatory" VALUE NUMERIC 2
END ITEMLIST
END PART
END POLICY
POLICY !!pqMaxRepeated
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqMaxRepeated_help
PART !!pqMaxRepeated NUMERIC
VALUENAME "pqMaxRepeated"
MIN 0 MAX 16 DEFAULT 3
END PART
END POLICY
POLICY !!pqCheckInit
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqCheckInit_help
PART !!pqCheckInit NUMERIC
VALUENAME "pqCheckInit"
MIN 0 MAX 1 DEFAULT 0
END PART
END POLICY
POLICY !!pqModifiable
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqModifiable_help
PART !!pqModifiable NUMERIC
VALUENAME "pqModifiable"
MIN 0 MAX 1
END PART
END POLICY
POLICY !!pqOwner
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
EXPLAIN !!pqOwner_help
PART !!pqOwner DROPDOWNLIST
VALUENAME "pqOwner"
ITEMLIST
NAME "administrator" VALUE NUMERIC 0 DEFAULT
NAME "user" VALUE NUMERIC 1
END ITEMLIST
END PART
END POLICY
END CATEGORY ;PQ
CATEGORY !!UIAC
POLICY !!AccessControl
KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\AccessControl"
EXPLAIN !!AccessControl_help
PART ChangePassword NUMERIC
VALUENAME "ChangePassword"
MIN 0 MAX 1 DEFAULT 1
END PART
PART RenameToken NUMERIC
VALUENAME "RenameToken"
MIN 0 MAX 1 DEFAULT 1
END PART
PART UnlockEtoken NUMERIC
VALUENAME "UnlockEtoken"
MIN 0 MAX 1 DEFAULT 1
END PART
PART ClearEToken NUMERIC
VALUENAME "ClearEToken"
MIN 0 MAX 1 DEFAULT 1
END PART
PART ViewTokenInfo NUMERIC
VALUENAME "ViewTokenInfo"
MIN 0 MAX 1 DEFAULT 1
END PART
PART DisconnectVirtual NUMERIC
VALUENAME "DisconnectVirtual"
MIN 0 MAX 1 DEFAULT 1
END PART
PART OpenAdvancedView NUMERIC
VALUENAME "OpenAdvancedView"
MIN 0 MAX 1 DEFAULT 1
END PART
PART AddeTokenVirtual NUMERIC
VALUENAME "AddeTokenVirtual"
MIN 0 MAX 1 DEFAULT 1
END PART
PART ManageReaders NUMERIC
VALUENAME "ManageReaders"
MIN 0 MAX 1 DEFAULT 1
END PART
PART InitializeEToken NUMERIC
VALUENAME "InitializeEToken"
MIN 0 MAX 1 DEFAULT 1
END PART
PART ImportCertificate NUMERIC
VALUENAME "ImportCertificate"
MIN 0 MAX 1 DEFAULT 1
END PART
PART ClearDefaultCert NUMERIC
VALUENAME "ClearDefaultCert"
MIN 0 MAX 1 DEFAULT 1
END PART
PART DeleteCertificate NUMERIC
VALUENAME "DeleteCertificate"
MIN 0 MAX 1 DEFAULT 1
END PART
PART ExportCertificate NUMERIC
VALUENAME "ExportCertificate"
MIN 0 MAX 1 DEFAULT 1
END PART
PART CopyCertificateData NUMERIC
VALUENAME "CopyCertificateData"
MIN 0 MAX 1 DEFAULT 1
END PART
PART SetCertificateAsDefault NUMERIC
VALUENAME "SetCertificateAsDefault"
MIN 0 MAX 1 DEFAULT 1
END PART
PART SetCertificateAsAuxilary NUMERIC
VALUENAME "SetCertificateAsAuxilary"
MIN 0 MAX 1 DEFAULT 1
END PART
PART LoginAsAdministrator NUMERIC
VALUENAME "LoginAsAdministrator"
MIN 0 MAX 1 DEFAULT 1
END PART
PART ChangeAdministratorPassword NUMERIC
VALUENAME "ChangeAdministratorPassword"
MIN 0 MAX 1 DEFAULT 1
END PART
PART SetUserPassword NUMERIC
VALUENAME "SetUserPassword"
MIN 0 MAX 1 DEFAULT 1
END PART
PART LaunchNGFlashPartitionApplication NUMERIC
VALUENAME "LaunchNGFlashPartitionApplication"
MIN 0 MAX 1 DEFAULT 1
END PART
PART ChangeInitializationKeyDuringInitialize NUMERIC
VALUENAME "ChangeInitializationKeyDuringInitialize"
MIN 0 MAX 1 DEFAULT 1
END PART
PART OpenAdvancedModeOfInitialize NUMERIC
VALUENAME "OpenAdvancedModeOfInitialize"
MIN 0 MAX 1 DEFAULT 1
END PART
PART TrayIconClearEToken NUMERIC
VALUENAME "TrayIconClearEToken"
MIN 0 MAX 1 DEFAULT 1
END PART
PART OpeneTokenProperties NUMERIC
VALUENAME "OpeneTokenProperties"
MIN 0 MAX 1 DEFAULT 1
END PART
PART TrayIconChangePassword NUMERIC
VALUENAME "TrayIconChangePassword"
MIN 0 MAX 1 DEFAULT 1
END PART
PART SwitcheToken NUMERIC
VALUENAME "SwitcheToken"
MIN 0 MAX 1 DEFAULT 1
END PART
PART About NUMERIC
VALUENAME "About"
MIN 0 MAX 1 DEFAULT 1
END PART
PART Hide NUMERIC
VALUENAME "Hide"
MIN 0 MAX 1 DEFAULT 1
END PART
PART GenerateOTP NUMERIC
VALUENAME "GenerateOTP"
MIN 0 MAX 1 DEFAULT 1
END PART
PART SyncDomainAndTokenPass NUMERIC
VALUENAME "SyncDomainAndTokenPass"
MIN 0 MAX 1 DEFAULT 1
END PART
END POLICY
END CATEGORY ;UIAC
END CATEGORY ;PKIClient
[strings]
PKIClient="eToken PKI Client Settings"
GENERAL="General Settings"
SyncPin="Change Token/Domain Password Settings"
INIT="Initialization Settings"
InitApp="eToken Properties Settings"
CAPI="CAPI Settings"
IEXPLORER="IEXPLORER.EXE"
CertStore="Certificate Store Settings"
MONITOR="Monitor Settings"
PQ="eToken Password Quality Policies"
UI="UI Settings"
UIAC="UI Access Control List"
;General settings
SingleLogon="Single Logon"
SingleLogon_help="Single Logon:\nDetermines if the user password is requested only once by eToken Properties\nDoes not apply to other applications\n\n Note:\n If Single Logon Timeout is > 0, Single Logon is automatically set to 1 (True).\n\nValues:\n� 1 (True) - User password is requested only once\n� 0 (False)- User password is requested as needed\n\n- Default is 0 (False)\n\n\nSingle Logon Timeout:\nDetermines the timeout, in seconds, of Single Logon\n\nValues:\n� >=0\n (0 � No timeout)\n\n- Default is 0"
SingleLogonTimeout="Single Logon Timeout"
SoftwareSlots="Software Slots"
SoftwareSlots_help="Determines the number of software slots \n\nValues:\n� 0-10\n (0 = eToken Virtual is disabled; only physical tokens are enabled)\n\n- Default is 2"
PcscSlots="PCSC Slots"
PcscSlots_help="Determines the number of PC/SC slots \n\nValues:\n� 0-16\n (0 = Physical tokens are disabled; only eToken Virtual is enabled)\n\n- Default is 8"
EnablePrvCache="Enable Private Cache"
EnablePrvCache_help="Determines if eToken PKI Client is enabled to cache private data in per process memory\n\nIf enabled, private data is cached if one of the following conditions is met:\n� The token was initialized with the private data caching option\n� The PrivateDataCaching registry key is not set to 0\n\nValues:\n� 1 (True) - Private data caching is enabled\n� 0 (False)- Private data caching is disabled\n\n- Default is 1 (True)"
TolerantFinalize="Tolerant Finalize"
TolerantFinalize_help="Determines if C_Finalize can be called by DllMain\nDefine this property per process.\n\n Note:\n Enable TolerantFinalize when using Novell Modular Authentication Service (NMAS) applications only.\n\nValues:\n� 1 (True) - C_Finalize can be called by DllMain\n� 0 (False)- C_Finalize cannot be called by DllMain\n\n- Default is 0 (False)"
TolerantX509Attributes="Tolerant X509 Attributes"
TolerantX509Attributes_help="Determines if CKA_SERIAL_NUMBER, CKA_SUBJECT, and CKA_ISSUER attributes can differ from those in CKA_VALUE during certificate creation\n\n Notes:\n Ensure that TolerantX509Attributes is True when using certificates created in a non- DER encoded binary x.509 format.\n In some earlier eToken PKI Client versions, TolerantX509Attributes was False by default.\n\nValues:\n� 1 (True) - The attributes can differ\n� 0 (False)- Check that the values match\n\n- Default is 1 (True)"
TolerantFindObjects="Tolerant Find Objects"
TolerantFindObjects_help="Determines if PKCS#11 tolerates a 'Find' function with an invalid template, returning an empty list instead of an error\n\nValues:\n� 1 (True) - A Find function with an invalid template is tolerated and returns an empty list\n� 0 (False)- A Find function with an invalid template is not tolerated and returns an error\n\n- Default is 0 (False)"
EtvLogoffUnplug="eToken Virtual Disconnect on Logoff"
EtvLogoffUnplug_help="Determines if an eToken Virtual is disconnected when logging off\n\nValues:\n� 1 (True) - Disconnect the eToken Virtual during logoff\n� 0 (False)- Do not disconnect the eToken Virtual during logoff \n\n- Default is 0 (False)"
SensitiveSecret="Protect Symmetric Keys"
SensitiveSecret_help="Determines if symmetric keys are protected\n\n Note:\n If True, symmetric keys cannot be extracted, even non-sensitive ones\n\nValues:\n� 1 (True) � Symmetric keys cannot be extracted\n� 0 (False)- Symmetric keys can be extracted\n\n- Default is 0 (False)"
;Change Token/Domain Password
domain="Domain"
domain_help="Determines if synchronization is enabled between the eToken Password and the domain password\n\nValues:\n� Name of the domain (written without a suffix) whose password is synchronized with the eToken Password\n� None - Password synchronization is not enabled"
;INIT Settings
HMAC-SHA1="Load OTP Support"
HMAC-SHA1_help="Determines if the 'Load OTP Support' option, required by OTP tokens, is enabled\n\nValues:\n� 1 (True) - Load OTP Support is enabled\n� 0 (False)- Load OTP Support is disabled\n\n- Default is\n� 1 (True) for OTP tokens\n� 0 (False) for other tokens"
RSA-2048="RSA-2048"
RSA-2048_help="Determines if the 'RSA-2048 Support' option is enabled\n\nValues:\n� 1 (True) - RSA-2048 Support is enabled\n� 0 (False)- RSA-2048 Support is disabled\n\n- Default is 0 (False)"
RSA-AREA-SIZE="RSA Area Size"
RSA-AREA-SIZE_help="Determines the size, in bytes, of the area to reserve for RSA keys on CardOS-based tokens\nThe size of the area allocated on the token is determined during token initialization, and cannot be modified without re-initializing the token.\n\nValues:\n� >=0\n (0 = RSA keys may not be created on a token)\n\n- Default depends on the token size:\n� For 16K tokens, enough bytes for three 1024-bits keys\n� For 32K tokens, enough bytes for five 1024-bits keys\n� For larger tokens, enough bytes for seven 1024-bits keys"
LEGACY-FORMAT-VERSION="Legacy Format Version"
LEGACY-FORMAT-VERSION_help="Determines the token format during initialization\n\nValues:\n� 0 - Tokens are formatted as backwardly compatible (CardOS)\n� 4 - Tokens are not formatted as backwardly compatible (CardOS)\n� 5 - Format includes new RSA behavior that is not controlled by key size. Each key is created in a separate directory (CardOS 4.20 FIPS or Java Card-based)\n\n- Default is 4"
RSASecondaryAuthenicationMode="RSA Secondary Authentication Mode"
RSASecondaryAuthenicationMode_help="Determines how RSA private keys are created\n\nValues:\n� 0 - ETCK_2NDAUTH_PROMPT_NEVER\n New RSA private keys are not protected with an additional password\n� 1 - ETCK_2NDAUTH_PROMPT_CONDITIONAL\n �If an external application has set the CKA_ALWAYS_AUTHENTICATE attribute to true, new RSA private keys are protected with an additional password\n �If the attribute has not been set, a prompt appears asking if a new RSA private key is to be protected with an additional password\n� 2 - ETCK_2NDAUTH_PROMPT_ALWAYS\n A prompt appears asking if a new RSA private key is to be protected with an additional password\n� 3 - ETCK_2NDAUTH_MANDATORY\n New RSA private keys must be protected with an additional password\n\n- Default is 3"
PrivateDataCaching="Private Data Caching"
PrivateDataCaching_help="If EnablePrvCache is true, determines if private data is cached\n\nValues:\n� 0 - Private data is not cached\n� 1 - Private data is cached when the token is logged on and erased when the token is logged off\n� 2 - Private data is cached and saved\n\n- Default is 2 (Full caching)"
;InitApp settings"
AdvancedView="Advanced View"
AdvancedView_help="Determines if the 'Advanced' button is enabled in the eToken Properties application\n\nValues:\n� 1 (True) - The button is enabled\n� 0 (False)- The button is disabled\n\n- Default is 1 (True)"
ShowInTray="Show Tray Icon"
ShowInTray_help="Determines if the eToken PKI Client tray icon is displayed when eToken PKI Client is launched\n\nValues:\n� 1 (True) - The tray icon is displayed\n� 0 (False)- The tray icon is not displayed\n\n- Default is 1 (True)"
;UI settings"
UseDefaultPassword="Use Default Password"
UseDefaultPassword_help="Determines if the 'Change Password at First Logon' process uses the default eToken Password (1234567890) as the old password, without requiring the user to supply it\n\nValues:\n� 1 (True) - The default eToken Password is automatically inserted in the password field\n� 0 (False)- The default eToken Password is not automatically inserted in the password field\n\n- Default is 0 (False)"
ShowDecimalSerial="Show Decimal Serial Number"
ShowDecimalSerial_help="Determines if the eToken Properties Information window displays the eToken serial number in hexadecimal or in decimal format\n\nValues:\n� 1 (True) - Displays the serial number in decimal format\n� 0 (False)- Displays the serial number in hexadecimal format\n\n- Default is 0 (False)"
;CAPI Settings
PasswordTimeout="Password Timeout"
PasswordTimeout_help="Determines the number of minutes the CAPI UI-required password is valid\n\nValues:\n� >=0\n (0 = No timeout)\n\n- Default is 0"
LogoutMode="Logout Mode"
LogoutMode_help="Determines if the user is prompted to enter a password for each operation requiring the user to be logged on\n\nValues:\n� 1 (True) - A password prompt is displayed each time\n� 0 (False)- A password prompt is not displayed each time\n\n- Default is 0 (False)"
AsciiPassword="ASCII Password"
AsciiPassword_help="Determines if non-ASCII characters are supported in eToken Passwords, enabling a string containing non-ASCII characters to be used as a smartcard logon password\n\nValues:\n� 1 (True) - Non-ASCII character are supported\n� 0 (False)- Only ASCII characters are supported\n\n- Default is 0 (False)"
;IEXPLORER.EXE
NoDefaultKeyContainer="No Default Key Container"
NoDefaultKeyContainer_help="Determines if an enrollment certificate from the Microsoft CA service is downloaded to use for creating a user certificate\n\n Note:\n The NoDefaultKeyContainer value is set per process on a per machine basis.\n\nValues:\n� 1 (True) - A Microsoft CA service enrollment certificate is downloaded\n� 0 (False)- A Microsoft CA service enrollment certificate is not downloaded\n\n- Default is\n� 1 (True) for the IEXPLORE.EXE process\n� 0 (False) otherwise"
;Certificate Store
PropagateUserCertificates="Propagate User Certificates"
PropagateUserCertificates_help="Determines if all user certificates on the token are exported to the user store\n\n Note:\n The PropagateUserCertificates value is saved on a per user basis in HKEY_CURRENT_USER, and not in HKEY_LOCAL_MACHINE.\n\nValues:\n� 1 (True) - User certificates are exported to the user store\n� 0 (False)- User certificates are not exported to the user store\n\n- Default is 1 (True)"
PropagateCACertificates="Propagate CA Certificates"
PropagateCACertificates_help="Determines if all CA certificates on the token are exported to the Trusted CA store\n\nValues:\n� 1 (True) - CA certificates are exported to the Trusted CA store\n� 0 (False)- CA certificates are not exported to the Trusted CA store\n\n- Default is 1 (True)"
SynchronizeStore="Synchronize Store"
SynchronizeStore_help="Determines if store synchronization is enabled\n\nValues:\n� 1 (True) - Store synchronization is enabled\n� 0 (False)- Store synchronization is disabled\n\n- Default is 1 (True)"
RemoveUserCertsOnTokenRemove="Remove User Certificates upon Token Removal"
RemoveUserCertsOnTokenRemove_help="Determines if user certificates are removed from the user store when the token from which they were exported is removed\n\n Note:\n Not limited to the selected token\n\nValues:\n� 1 (True) - User certificates are removed from the user store\n� 0 (False)- User certificates are not removed from the user store\n\n- Default is 1 (True)"
AddToTokenOnNewCertInStore="Add to Token upon New Certificates in Store"
AddToTokenOnNewCertInStore_help="Determines if an option is displayed to import the certificate to the selected token when a new certificate with exportable keys is added to the user store\n\nValues:\n� 1 (True) - An option is displayed to import a new certificate\n� 0 (False)- An option is not displayed to import a new certificate\n\n- Default is 1 (True)"
RemoveFromStoreOnRemoveFromToken="Remove from Store upon Removal from Token"
RemoveFromStoreOnRemoveFromToken_help="Determines if a certificate is removed from the user store when that certificate is removed from the token\n\nValues:\n� 1 (True) - The certificate is removed from the user store\n� 0 (False)- The certificate is not removed from the user store\n\n- Default is 1 (True)"
RemoveFromTokenOnRemoveFromStore="Remove from Token upon Removal from Store"
RemoveFromTokenOnRemoveFromStore_help="Determines if an option is displayed to remove the certificate from the token when that certificate is removed from the user store\n\nValues:\n� 0 - Never; an option is not displayed to remove the certificate\n� 1 - Always; an option is displayed to remove the certificate\n� 2 - An option is displayed to remove only those certificates whose templates are listed in the registry setting 'RemoveFromTokenOnRemoveFromStoreTemplates'\n\n- Default is 0"
RemoveFromTokenOnRemoveFromStoreTemplates="Remove from Token upon Removal from Store Templates"
RemoveFromTokenOnRemoveFromStoreTemplates_help="Lists the templates of the certificates to be removed from the token when the certificates are removed from the user store\n\nRelevant only when the registry setting 'RemoveFromTokenOnRemoveFromStore' is set to 2\n\nValue:\n� Template name(s)"
CertsToRemoveStorePeriod="Certificates to Remove Storage Period"
CertsToRemoveStorePeriod_help="Determines the number of days to attempt to remove certificates from a token that is not connected\n\nRelevant only when the registry setting 'RemoveFromTokenOnRemoveFromStore' is set to 1 or 2\n\nValue:\n� >=0\n\n- Default is 7"
;Monitor Settings
NotifyPasswordExpiration="Notify Password Expiration"
NotifyPasswordExpiration_help="Determines if the user is notified by a pop-up message in the system tray when the token password is about to expire\n\nValues:\n� 1 (True) - Notify the user\n� 0 (False)- Do not notify the user\n\n- Default is 1 (True)"
;Password Quality
pqMinLen="Password - Minimum Length"
pqMinLen_help="Determines the minimum password length\n\nValue:\n� >=4\n\n- Default is 6"
pqMixChars="Password - Force Mixed Characters"
pqMixChars_Help="Determines if complexity requirements are enforced, requiring mixed characters in a password\nThe characters to mix are: upper-case letters, lower-case letters, numbers, and special characters\n\nValues:\n� Auto - Complexity requirements are enforced\n� Manual - Manual complexity requirements are enforced\n- Default is Auto"
pqMaxAge="Password - Expiry Period"
pqMaxAge_help="Determines the maximum number of days a password is valid\n\nValues:\n� >=0\n (0 = No expiration)\n\n- Default is 0"
pqMinAge="Password - Minimum Period"
pqMinAge_help="Determines the minimum number of days required before a password change\n\nValues:\n� >=0\n (0 = No minimum)\n\n- Default is 0"
pqWarnPeriod="Password - Expiration Warning Period"
pqWarnPeriod_help="Determines the number of days before expiration during which a warning is displayed\n\nValues:\n� >=0\n (0 = No warning)\n\n- Default is 0"
pqHistorySize="Password - History Size"
pqHistorySize_help="Determines the number of recent passwords that may not be repeated\n\nValues:\n� >=0\n (0 = No minimum)\n\n- Default is 10"
pqNumbers="Password - Include Numbers"
pqNumbers_help="Determines if the password may include numbers\n\nValues:\n� 0 - Numbers are permitted\n� 1 - Numbers are forbidden\n� 2 - Numbers are mandatory\n\n- Default is 0"
pqLowerCase="Password - Include Lower-Case"
pqLowerCase_help="Determines if the password may include lower-case letters\n\nValues:\n� 0 - Lower-case letters are permitted\n� 1 - Lower-case letters are forbidden\n� 2 - Lower-case letters are mandatory\n\n- Default is 0"
pqUpperCase="Password - Include Upper-Case"
pqUpperCase_help="Determines if the password may include upper-case letters\n\nValues:\n� 0 - Upper-case letters are permitted\n� 1 - Upper-case letters are forbidden\n� 2 - Upper-case letters are mandatory\n\n- Default is 0"
pqSpecial="Password - Include Special Characters"
pqSpecial_help="Determines if the password may include special characters, such as @, !, &\n\nValues:\n� 0 - Special characters are permitted\n� 1 - Special characters are forbidden\n� 2 - Special characters are mandatory\n\n- Default is 0"
pqMaxRepeated="Password - Maximum Repeated"
pqMaxRepeated_help="Determines the maximum number of consecutive times any character can be used in a password\n\nValues:\n� >=0\n (0 = No maximum)\n\n- Default is 3"
pqCheckInit="Password Quality Check on Initialization"
pqCheckInit_help="Determines if the eToken Password quality is checked and enforced when a token is initialized\n\n Note:\n We recommend that this policy not be set when tokens are enrolled using TMS.\n\nValues:\n� 1 (True) - The password policy is enforced\n� 0 (False)- The password policy is not enforced\n\n- Default is 0"
pqModifiable="Password Quality Modifiable"
pqModifiable_help="Determines if the password policy on a newly initialized token can be modified by the owner\nSee the 'pqOwner' registry key\n\nValues:\n� 1 (True) - The password policy can be modified by the owner\n� 0 (False)- The password policy cannot be modified by the owner\n\n- Default is:\n� 1 (True) for administrator-owned tokens\n� 0 (False) for user-owned tokens"
pqOwner="Password Quality Owner"
pqOwner_help="Determines the owner of the password policy on a newly initialized token, and determines the default of the 'pqModifiable' registry key\n\nValues:\n� 0 - The owner of the password policy is an administrator\n� 1 - The owner of the password policy is a user\n\n- Default is:\n� 0 (Administrator) if the token has an Administrator Password\n� 1 (User) if the token does not have an Administrator Password"
AccessControl="Access Control"
AccessControl_help="Determines which GUI Access Control Settings are enabled in the eToken Properties application\n\nValues:\n� 1 (True) - The option is enabled\n� 0 (False)- The option is disabled\n\n- Default is 1 (True) for all properties"