eTokenPKIClient_5_1.adm 36 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788
  1. CLASS MACHINE
  2. CATEGORY !!PKIClient
  3. CATEGORY !!GENERAL
  4. POLICY !!SingleLogon
  5. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
  6. EXPLAIN !!SingleLogon_help
  7. PART !!SingleLogon NUMERIC
  8. VALUENAME "SingleLogon"
  9. MIN 0 MAX 1 DEFAULT 0
  10. END PART
  11. PART !!SingleLogonTimeout NUMERIC
  12. VALUENAME "SingleLogonTimeout"
  13. MIN 0 DEFAULT 0
  14. END PART
  15. END POLICY
  16. POLICY !!SoftwareSlots
  17. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
  18. EXPLAIN !!SoftwareSlots_help
  19. PART !!SoftwareSlots NUMERIC
  20. VALUENAME "SoftwareSlots"
  21. MIN 0 DEFAULT 2
  22. END PART
  23. END POLICY
  24. POLICY !!PcscSlots
  25. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
  26. EXPLAIN !!PcscSlots_help
  27. PART !!PcscSlots NUMERIC
  28. VALUENAME "PcscSlots"
  29. MIN 0 DEFAULT 8
  30. END PART
  31. END POLICY
  32. POLICY !!EnablePrvCache
  33. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
  34. EXPLAIN !!EnablePrvCache_help
  35. PART !!EnablePrvCache NUMERIC
  36. VALUENAME "EnablePrvCache"
  37. MIN 0 MAX 1 DEFAULT 1
  38. END PART
  39. END POLICY
  40. POLICY !!TolerantFinalize
  41. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
  42. EXPLAIN !!TolerantFinalize_help
  43. PART !!TolerantFinalize NUMERIC
  44. VALUENAME "TolerantFinalize"
  45. MIN 0 MAX 1 DEFAULT 0
  46. END PART
  47. END POLICY
  48. POLICY !!TolerantX509Attributes
  49. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
  50. EXPLAIN !!TolerantX509Attributes_help
  51. PART !!TolerantX509Attributes NUMERIC
  52. VALUENAME "TolerantX509Attributes"
  53. MIN 0 MAX 1 DEFAULT 1
  54. END PART
  55. END POLICY
  56. POLICY !!TolerantFindObjects
  57. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
  58. EXPLAIN !!TolerantFindObjects_help
  59. PART !!TolerantFindObjects NUMERIC
  60. VALUENAME "TolerantFindObjects"
  61. MIN 0 MAX 1 DEFAULT 0
  62. END PART
  63. END POLICY
  64. POLICY !!EtvLogoffUnplug
  65. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
  66. EXPLAIN !!EtvLogoffUnplug_help
  67. PART !!EtvLogoffUnplug NUMERIC
  68. VALUENAME "EtvLogoffUnplug"
  69. MIN 0 MAX 1 DEFAULT 0
  70. END PART
  71. END POLICY
  72. POLICY !!SensitiveSecret
  73. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\GENERAL"
  74. EXPLAIN !!SensitiveSecret_help
  75. PART !!SensitiveSecret NUMERIC
  76. VALUENAME "SensitiveSecret"
  77. MIN 0 MAX 1 DEFAULT 0
  78. END PART
  79. END POLICY
  80. END CATEGORY ;GENERAL
  81. CATEGORY !!SyncPin
  82. POLICY !!domain
  83. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\SyncPin"
  84. EXPLAIN !!domain_help
  85. PART !!domain EDITTEXT
  86. VALUENAME "domain"
  87. END PART
  88. END POLICY
  89. END CATEGORY ;SyncPin
  90. CATEGORY !!INIT
  91. POLICY !!HMAC-SHA1
  92. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
  93. EXPLAIN !!HMAC-SHA1_help
  94. PART !!HMAC-SHA1 NUMERIC
  95. VALUENAME "HMAC-SHA1"
  96. MIN 0 MAX 1
  97. END PART
  98. END POLICY
  99. POLICY !!RSA-2048
  100. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
  101. EXPLAIN !!RSA-2048_help
  102. PART !!RSA-2048 NUMERIC
  103. VALUENAME "RSA-2048"
  104. MIN 0 MAX 1
  105. END PART
  106. END POLICY
  107. POLICY !!RSA-AREA-SIZE
  108. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
  109. EXPLAIN !!RSA-AREA-SIZE_help
  110. PART !!RSA-AREA-SIZE NUMERIC
  111. VALUENAME "RSA-AREA-SIZE"
  112. MIN 0 MAX 1
  113. END PART
  114. END POLICY
  115. POLICY !!LEGACY-FORMAT-VERSION
  116. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
  117. EXPLAIN !!LEGACY-FORMAT-VERSION_help
  118. PART !!LEGACY-FORMAT-VERSION DROPDOWNLIST
  119. VALUENAME "LEGACY-FORMAT-VERSION"
  120. ITEMLIST
  121. NAME "4" VALUE NUMERIC 4 DEFAULT
  122. NAME "5" VALUE NUMERIC 5
  123. NAME "0" VALUE NUMERIC 0
  124. END ITEMLIST
  125. END PART
  126. END POLICY
  127. POLICY !!RSASecondaryAuthenicationMode
  128. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
  129. EXPLAIN !!RSASecondaryAuthenicationMode_help
  130. PART !!RSASecondaryAuthenicationMode NUMERIC
  131. VALUENAME "RSASecondaryAuthenicationMode"
  132. MIN 0 MAX 1
  133. END PART
  134. END POLICY
  135. POLICY !!PrivateDataCaching
  136. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Init"
  137. EXPLAIN !!PrivateDataCaching_help
  138. PART !!PrivateDataCaching NUMERIC
  139. VALUENAME "PrivateDataCaching"
  140. MIN 0 MAX 1
  141. END PART
  142. END POLICY
  143. END CATEGORY ;INIT
  144. CATEGORY !!InitApp
  145. POLICY !!AdvancedView
  146. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\InitApp"
  147. EXPLAIN !!AdvancedView_help
  148. PART !!AdvancedView NUMERIC
  149. VALUENAME "AdvancedView"
  150. MIN 0 MAX 1 DEFAULT 1
  151. END PART
  152. END POLICY
  153. POLICY !!ShowInTray
  154. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\InitApp"
  155. EXPLAIN !!ShowInTray_help
  156. PART !!ShowInTray NUMERIC
  157. VALUENAME "ShowInTray"
  158. MIN 0 MAX 1 DEFAULT 1
  159. END PART
  160. END POLICY
  161. END CATEGORY ;InitApp
  162. CATEGORY !!UI
  163. POLICY !!UseDefaultPassword
  164. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\UI"
  165. EXPLAIN !!UseDefaultPassword_help
  166. PART !!UseDefaultPassword NUMERIC
  167. VALUENAME "UseDefaultPassword"
  168. MIN 0 MAX 1 DEFAULT 0
  169. END PART
  170. END POLICY
  171. POLICY !!ShowDecimalSerial
  172. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\UI"
  173. EXPLAIN !!ShowDecimalSerial_help
  174. PART !!ShowDecimalSerial NUMERIC
  175. VALUENAME "ShowDecimalSerial"
  176. MIN 0 MAX 1 DEFAULT 1
  177. END PART
  178. END POLICY
  179. END CATEGORY ;UI
  180. CATEGORY !!CAPI
  181. POLICY !!PasswordTimeout
  182. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CAPI"
  183. EXPLAIN !!PasswordTimeout_help
  184. PART !!PasswordTimeout NUMERIC
  185. VALUENAME "PasswordTimeout"
  186. MIN 0 DEFAULT 0
  187. END PART
  188. END POLICY
  189. POLICY !!LogoutMode
  190. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CAPI"
  191. EXPLAIN !!LogoutMode_help
  192. PART !!LogoutMode NUMERIC
  193. VALUENAME "LogoutMode"
  194. MIN 0 MAX 1 DEFAULT 0
  195. END PART
  196. END POLICY
  197. POLICY !!AsciiPassword
  198. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CAPI"
  199. EXPLAIN !!AsciiPassword_help
  200. PART !!AsciiPassword NUMERIC
  201. VALUENAME "AsciiPassword"
  202. MIN 0 MAX 1 DEFAULT 0
  203. END PART
  204. END POLICY
  205. CATEGORY !!IEXPLORER
  206. POLICY !!NoDefaultKeyContainer
  207. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CAPI\IEXPLORER.EXE"
  208. EXPLAIN !!NoDefaultKeyContainer_help
  209. PART !!NoDefaultKeyContainer NUMERIC
  210. VALUENAME "NoDefaultKeyContainer"
  211. MIN 0 MAX 1 DEFAULT 1
  212. END PART
  213. END POLICY
  214. END CATEGORY ;IEXPLORER
  215. END CATEGORY ;CAPI
  216. CATEGORY !!CertStore
  217. POLICY !!PropagateUserCertificates
  218. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
  219. EXPLAIN !!PropagateUserCertificates_help
  220. PART !!PropagateUserCertificates NUMERIC
  221. VALUENAME "PropagateUserCertificates"
  222. MIN 0 MAX 1 DEFAULT 1
  223. END PART
  224. END POLICY
  225. POLICY !!PropagateCACertificates
  226. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
  227. EXPLAIN !!PropagateCACertificates_help
  228. PART !!PropagateCACertificates NUMERIC
  229. VALUENAME "PropagateCACertificates"
  230. MIN 0 MAX 1 DEFAULT 1
  231. END PART
  232. END POLICY
  233. POLICY !!SynchronizeStore
  234. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
  235. EXPLAIN !!SynchronizeStore_help
  236. PART !!SynchronizeStore NUMERIC
  237. VALUENAME "SynchronizeStore"
  238. MIN 0 MAX 1 DEFAULT 1
  239. END PART
  240. END POLICY
  241. POLICY !!RemoveUserCertsOnTokenRemove
  242. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
  243. EXPLAIN !!RemoveUserCertsOnTokenRemove_help
  244. PART !!RemoveUserCertsOnTokenRemove NUMERIC
  245. VALUENAME "RemoveUserCertsOnTokenRemove"
  246. MIN 0 MAX 1 DEFAULT 1
  247. END PART
  248. END POLICY
  249. POLICY !!AddToTokenOnNewCertInStore
  250. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
  251. EXPLAIN !!AddToTokenOnNewCertInStore_help
  252. PART !!AddToTokenOnNewCertInStore NUMERIC
  253. VALUENAME "AddToTokenOnNewCertInStore"
  254. MIN 0 MAX 1 DEFAULT 1
  255. END PART
  256. END POLICY
  257. POLICY !!RemoveFromStoreOnRemoveFromToken
  258. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
  259. EXPLAIN !!RemoveFromStoreOnRemoveFromToken_help
  260. PART !!RemoveFromStoreOnRemoveFromToken NUMERIC
  261. VALUENAME "RemoveFromStoreOnRemoveFromToken"
  262. MIN 0 MAX 1 DEFAULT 1
  263. END PART
  264. END POLICY
  265. POLICY !!RemoveFromTokenOnRemoveFromStore
  266. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
  267. EXPLAIN !!RemoveFromTokenOnRemoveFromStore_help
  268. PART !!RemoveFromTokenOnRemoveFromStore DROPDOWNLIST
  269. VALUENAME "RemoveFromTokenOnRemoveFromStore"
  270. ITEMLIST
  271. NAME "Never" VALUE NUMERIC 0 DEFAULT
  272. NAME "Always" VALUE NUMERIC 1
  273. NAME "Template dependent" VALUE NUMERIC 2
  274. END ITEMLIST
  275. END PART
  276. END POLICY
  277. POLICY !!RemoveFromTokenOnRemoveFromStoreTemplates
  278. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
  279. EXPLAIN !!RemoveFromTokenOnRemoveFromStoreTemplates_help
  280. PART !!RemoveFromTokenOnRemoveFromStoreTemplates EDITTEXT
  281. VALUENAME "RemoveFromTokenOnRemoveFromStoreTemplates"
  282. END PART
  283. END POLICY
  284. POLICY !!CertsToRemoveStorePeriod
  285. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\CertStore"
  286. EXPLAIN !!CertsToRemoveStorePeriod_help
  287. PART !!CertsToRemoveStorePeriod NUMERIC
  288. VALUENAME "CertsToRemoveStorePeriod"
  289. DEFAULT 7
  290. END PART
  291. END POLICY
  292. END CATEGORY ;CertStore
  293. CATEGORY !!MONITOR
  294. POLICY !!NotifyPasswordExpiration
  295. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\Monitor"
  296. EXPLAIN !!NotifyPasswordExpiration_help
  297. PART !!NotifyPasswordExpiration NUMERIC
  298. VALUENAME "NotifyPasswordExpiration"
  299. MIN 0 MAX 1 DEFAULT 1
  300. END PART
  301. END POLICY
  302. END CATEGORY ;MONITOR
  303. CATEGORY !!PQ
  304. POLICY !!pqMinLen
  305. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  306. EXPLAIN !!pqMinLen_help
  307. PART !!pqMinLen NUMERIC
  308. VALUENAME "pqMinLen"
  309. DEFAULT 6
  310. MIN 4
  311. END PART
  312. END POLICY
  313. POLICY !!pqMixChars
  314. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  315. EXPLAIN !!pqMixChars_Help
  316. PART !!pqMixChars DROPDOWNLIST
  317. VALUENAME "pqMixChars"
  318. ITEMLIST
  319. NAME "Auto" VALUE NUMERIC 1 DEFAULT
  320. NAME "Manual" VALUE NUMERIC 0
  321. END ITEMLIST
  322. END PART
  323. END POLICY
  324. POLICY !!pqMaxAge
  325. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  326. EXPLAIN !!pqMaxAge_help
  327. PART !!pqMaxAge NUMERIC
  328. VALUENAME "pqMaxAge"
  329. MIN 0 DEFAULT 0
  330. END PART
  331. END POLICY
  332. POLICY !!pqMinAge
  333. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  334. EXPLAIN !!pqMinAge_help
  335. PART !!pqMinAge NUMERIC
  336. VALUENAME "pqMinAge"
  337. MIN 0 DEFAULT 0
  338. END PART
  339. END POLICY
  340. POLICY !!pqWarnPeriod
  341. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  342. EXPLAIN !!pqWarnPeriod_help
  343. PART !!pqWarnPeriod NUMERIC
  344. VALUENAME "pqWarnPeriod"
  345. MIN 0 DEFAULT 0
  346. END PART
  347. END POLICY
  348. POLICY !!pqHistorySize
  349. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  350. EXPLAIN !!pqHistorySize_help
  351. PART !!pqHistorySize NUMERIC
  352. VALUENAME "pqHistorySize"
  353. MIN 0 DEFAULT 10
  354. END PART
  355. END POLICY
  356. POLICY !!pqNumbers
  357. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  358. EXPLAIN !!pqNumbers_help
  359. PART !!pqNumbers DROPDOWNLIST
  360. VALUENAME "pqNumbers"
  361. ITEMLIST
  362. NAME "Permitted" VALUE NUMERIC 0 DEFAULT
  363. NAME "Forbidden" VALUE NUMERIC 1
  364. NAME "Mandatory" VALUE NUMERIC 2
  365. END ITEMLIST
  366. END PART
  367. END POLICY
  368. POLICY !!pqLowerCase
  369. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  370. EXPLAIN !!pqLowerCase_help
  371. PART !!pqLowerCase DROPDOWNLIST
  372. VALUENAME "pqLowerCase"
  373. ITEMLIST
  374. NAME "Permitted" VALUE NUMERIC 0 DEFAULT
  375. NAME "Forbidden" VALUE NUMERIC 1
  376. NAME "Mandatory" VALUE NUMERIC 2
  377. END ITEMLIST
  378. END PART
  379. END POLICY
  380. POLICY !!pqUpperCase
  381. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  382. EXPLAIN !!pqUpperCase_help
  383. PART !!pqUpperCase DROPDOWNLIST
  384. VALUENAME "pqUpperCase"
  385. ITEMLIST
  386. NAME "Permitted" VALUE NUMERIC 0 DEFAULT
  387. NAME "Forbidden" VALUE NUMERIC 1
  388. NAME "Mandatory" VALUE NUMERIC 2
  389. END ITEMLIST
  390. END PART
  391. END POLICY
  392. POLICY !!pqSpecial
  393. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  394. EXPLAIN !!pqSpecial_help
  395. PART !!pqSpecial DROPDOWNLIST
  396. VALUENAME "pqSpecial"
  397. ITEMLIST
  398. NAME "Permitted" VALUE NUMERIC 0 DEFAULT
  399. NAME "Forbidden" VALUE NUMERIC 1
  400. NAME "Mandatory" VALUE NUMERIC 2
  401. END ITEMLIST
  402. END PART
  403. END POLICY
  404. POLICY !!pqMaxRepeated
  405. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  406. EXPLAIN !!pqMaxRepeated_help
  407. PART !!pqMaxRepeated NUMERIC
  408. VALUENAME "pqMaxRepeated"
  409. MIN 0 MAX 16 DEFAULT 3
  410. END PART
  411. END POLICY
  412. POLICY !!pqCheckInit
  413. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  414. EXPLAIN !!pqCheckInit_help
  415. PART !!pqCheckInit NUMERIC
  416. VALUENAME "pqCheckInit"
  417. MIN 0 MAX 1 DEFAULT 0
  418. END PART
  419. END POLICY
  420. POLICY !!pqModifiable
  421. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  422. EXPLAIN !!pqModifiable_help
  423. PART !!pqModifiable NUMERIC
  424. VALUENAME "pqModifiable"
  425. MIN 0 MAX 1
  426. END PART
  427. END POLICY
  428. POLICY !!pqOwner
  429. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\PQ"
  430. EXPLAIN !!pqOwner_help
  431. PART !!pqOwner DROPDOWNLIST
  432. VALUENAME "pqOwner"
  433. ITEMLIST
  434. NAME "administrator" VALUE NUMERIC 0 DEFAULT
  435. NAME "user" VALUE NUMERIC 1
  436. END ITEMLIST
  437. END PART
  438. END POLICY
  439. END CATEGORY ;PQ
  440. CATEGORY !!UIAC
  441. POLICY !!AccessControl
  442. KEYNAME "SOFTWARE\Policies\Aladdin\eToken\MIDDLEWARE\AccessControl"
  443. EXPLAIN !!AccessControl_help
  444. PART ChangePassword NUMERIC
  445. VALUENAME "ChangePassword"
  446. MIN 0 MAX 1 DEFAULT 1
  447. END PART
  448. PART RenameToken NUMERIC
  449. VALUENAME "RenameToken"
  450. MIN 0 MAX 1 DEFAULT 1
  451. END PART
  452. PART UnlockEtoken NUMERIC
  453. VALUENAME "UnlockEtoken"
  454. MIN 0 MAX 1 DEFAULT 1
  455. END PART
  456. PART ClearEToken NUMERIC
  457. VALUENAME "ClearEToken"
  458. MIN 0 MAX 1 DEFAULT 1
  459. END PART
  460. PART ViewTokenInfo NUMERIC
  461. VALUENAME "ViewTokenInfo"
  462. MIN 0 MAX 1 DEFAULT 1
  463. END PART
  464. PART DisconnectVirtual NUMERIC
  465. VALUENAME "DisconnectVirtual"
  466. MIN 0 MAX 1 DEFAULT 1
  467. END PART
  468. PART OpenAdvancedView NUMERIC
  469. VALUENAME "OpenAdvancedView"
  470. MIN 0 MAX 1 DEFAULT 1
  471. END PART
  472. PART AddeTokenVirtual NUMERIC
  473. VALUENAME "AddeTokenVirtual"
  474. MIN 0 MAX 1 DEFAULT 1
  475. END PART
  476. PART ManageReaders NUMERIC
  477. VALUENAME "ManageReaders"
  478. MIN 0 MAX 1 DEFAULT 1
  479. END PART
  480. PART InitializeEToken NUMERIC
  481. VALUENAME "InitializeEToken"
  482. MIN 0 MAX 1 DEFAULT 1
  483. END PART
  484. PART ImportCertificate NUMERIC
  485. VALUENAME "ImportCertificate"
  486. MIN 0 MAX 1 DEFAULT 1
  487. END PART
  488. PART ClearDefaultCert NUMERIC
  489. VALUENAME "ClearDefaultCert"
  490. MIN 0 MAX 1 DEFAULT 1
  491. END PART
  492. PART DeleteCertificate NUMERIC
  493. VALUENAME "DeleteCertificate"
  494. MIN 0 MAX 1 DEFAULT 1
  495. END PART
  496. PART ExportCertificate NUMERIC
  497. VALUENAME "ExportCertificate"
  498. MIN 0 MAX 1 DEFAULT 1
  499. END PART
  500. PART CopyCertificateData NUMERIC
  501. VALUENAME "CopyCertificateData"
  502. MIN 0 MAX 1 DEFAULT 1
  503. END PART
  504. PART SetCertificateAsDefault NUMERIC
  505. VALUENAME "SetCertificateAsDefault"
  506. MIN 0 MAX 1 DEFAULT 1
  507. END PART
  508. PART SetCertificateAsAuxilary NUMERIC
  509. VALUENAME "SetCertificateAsAuxilary"
  510. MIN 0 MAX 1 DEFAULT 1
  511. END PART
  512. PART LoginAsAdministrator NUMERIC
  513. VALUENAME "LoginAsAdministrator"
  514. MIN 0 MAX 1 DEFAULT 1
  515. END PART
  516. PART ChangeAdministratorPassword NUMERIC
  517. VALUENAME "ChangeAdministratorPassword"
  518. MIN 0 MAX 1 DEFAULT 1
  519. END PART
  520. PART SetUserPassword NUMERIC
  521. VALUENAME "SetUserPassword"
  522. MIN 0 MAX 1 DEFAULT 1
  523. END PART
  524. PART LaunchNGFlashPartitionApplication NUMERIC
  525. VALUENAME "LaunchNGFlashPartitionApplication"
  526. MIN 0 MAX 1 DEFAULT 1
  527. END PART
  528. PART ChangeInitializationKeyDuringInitialize NUMERIC
  529. VALUENAME "ChangeInitializationKeyDuringInitialize"
  530. MIN 0 MAX 1 DEFAULT 1
  531. END PART
  532. PART OpenAdvancedModeOfInitialize NUMERIC
  533. VALUENAME "OpenAdvancedModeOfInitialize"
  534. MIN 0 MAX 1 DEFAULT 1
  535. END PART
  536. PART TrayIconClearEToken NUMERIC
  537. VALUENAME "TrayIconClearEToken"
  538. MIN 0 MAX 1 DEFAULT 1
  539. END PART
  540. PART OpeneTokenProperties NUMERIC
  541. VALUENAME "OpeneTokenProperties"
  542. MIN 0 MAX 1 DEFAULT 1
  543. END PART
  544. PART TrayIconChangePassword NUMERIC
  545. VALUENAME "TrayIconChangePassword"
  546. MIN 0 MAX 1 DEFAULT 1
  547. END PART
  548. PART SwitcheToken NUMERIC
  549. VALUENAME "SwitcheToken"
  550. MIN 0 MAX 1 DEFAULT 1
  551. END PART
  552. PART About NUMERIC
  553. VALUENAME "About"
  554. MIN 0 MAX 1 DEFAULT 1
  555. END PART
  556. PART Hide NUMERIC
  557. VALUENAME "Hide"
  558. MIN 0 MAX 1 DEFAULT 1
  559. END PART
  560. PART GenerateOTP NUMERIC
  561. VALUENAME "GenerateOTP"
  562. MIN 0 MAX 1 DEFAULT 1
  563. END PART
  564. PART SyncDomainAndTokenPass NUMERIC
  565. VALUENAME "SyncDomainAndTokenPass"
  566. MIN 0 MAX 1 DEFAULT 1
  567. END PART
  568. END POLICY
  569. END CATEGORY ;UIAC
  570. END CATEGORY ;PKIClient
  571. [strings]
  572. PKIClient="eToken PKI Client Settings"
  573. GENERAL="General Settings"
  574. SyncPin="Change Token/Domain Password Settings"
  575. INIT="Initialization Settings"
  576. InitApp="eToken Properties Settings"
  577. CAPI="CAPI Settings"
  578. IEXPLORER="IEXPLORER.EXE"
  579. CertStore="Certificate Store Settings"
  580. MONITOR="Monitor Settings"
  581. PQ="eToken Password Quality Policies"
  582. UI="UI Settings"
  583. UIAC="UI Access Control List"
  584. ;General settings
  585. SingleLogon="Single Logon"
  586. SingleLogon_help="Single Logon:\nDetermines if the user password is requested only once by eToken Properties\nDoes not apply to other applications\n\n Note:\n If Single Logon Timeout is > 0, Single Logon is automatically set to 1 (True).\n\nValues:\n• 1 (True) - User password is requested only once\n• 0 (False)- User password is requested as needed\n\n- Default is 0 (False)\n\n\nSingle Logon Timeout:\nDetermines the timeout, in seconds, of Single Logon\n\nValues:\n• >=0\n (0 – No timeout)\n\n- Default is 0"
  587. SingleLogonTimeout="Single Logon Timeout"
  588. SoftwareSlots="Software Slots"
  589. SoftwareSlots_help="Determines the number of software slots \n\nValues:\n• 0-10\n (0 = eToken Virtual is disabled; only physical tokens are enabled)\n\n- Default is 2"
  590. PcscSlots="PCSC Slots"
  591. PcscSlots_help="Determines the number of PC/SC slots \n\nValues:\n• 0-16\n (0 = Physical tokens are disabled; only eToken Virtual is enabled)\n\n- Default is 8"
  592. EnablePrvCache="Enable Private Cache"
  593. EnablePrvCache_help="Determines if eToken PKI Client is enabled to cache private data in per process memory\n\nIf enabled, private data is cached if one of the following conditions is met:\n• The token was initialized with the private data caching option\n• The PrivateDataCaching registry key is not set to 0\n\nValues:\n• 1 (True) - Private data caching is enabled\n• 0 (False)- Private data caching is disabled\n\n- Default is 1 (True)"
  594. TolerantFinalize="Tolerant Finalize"
  595. TolerantFinalize_help="Determines if C_Finalize can be called by DllMain\nDefine this property per process.\n\n Note:\n Enable TolerantFinalize when using Novell Modular Authentication Service (NMAS) applications only.\n\nValues:\n• 1 (True) - C_Finalize can be called by DllMain\n• 0 (False)- C_Finalize cannot be called by DllMain\n\n- Default is 0 (False)"
  596. TolerantX509Attributes="Tolerant X509 Attributes"
  597. TolerantX509Attributes_help="Determines if CKA_SERIAL_NUMBER, CKA_SUBJECT, and CKA_ISSUER attributes can differ from those in CKA_VALUE during certificate creation\n\n Notes:\n Ensure that TolerantX509Attributes is True when using certificates created in a non- DER encoded binary x.509 format.\n In some earlier eToken PKI Client versions, TolerantX509Attributes was False by default.\n\nValues:\n• 1 (True) - The attributes can differ\n• 0 (False)- Check that the values match\n\n- Default is 1 (True)"
  598. TolerantFindObjects="Tolerant Find Objects"
  599. TolerantFindObjects_help="Determines if PKCS#11 tolerates a 'Find' function with an invalid template, returning an empty list instead of an error\n\nValues:\n• 1 (True) - A Find function with an invalid template is tolerated and returns an empty list\n• 0 (False)- A Find function with an invalid template is not tolerated and returns an error\n\n- Default is 0 (False)"
  600. EtvLogoffUnplug="eToken Virtual Disconnect on Logoff"
  601. EtvLogoffUnplug_help="Determines if an eToken Virtual is disconnected when logging off\n\nValues:\n• 1 (True) - Disconnect the eToken Virtual during logoff\n• 0 (False)- Do not disconnect the eToken Virtual during logoff \n\n- Default is 0 (False)"
  602. SensitiveSecret="Protect Symmetric Keys"
  603. SensitiveSecret_help="Determines if symmetric keys are protected\n\n Note:\n If True, symmetric keys cannot be extracted, even non-sensitive ones\n\nValues:\n• 1 (True) – Symmetric keys cannot be extracted\n• 0 (False)- Symmetric keys can be extracted\n\n- Default is 0 (False)"
  604. ;Change Token/Domain Password
  605. domain="Domain"
  606. domain_help="Determines if synchronization is enabled between the eToken Password and the domain password\n\nValues:\n• Name of the domain (written without a suffix) whose password is synchronized with the eToken Password\n• None - Password synchronization is not enabled"
  607. ;INIT Settings
  608. HMAC-SHA1="Load OTP Support"
  609. HMAC-SHA1_help="Determines if the 'Load OTP Support' option, required by OTP tokens, is enabled\n\nValues:\n• 1 (True) - Load OTP Support is enabled\n• 0 (False)- Load OTP Support is disabled\n\n- Default is\n• 1 (True) for OTP tokens\n• 0 (False) for other tokens"
  610. RSA-2048="RSA-2048"
  611. RSA-2048_help="Determines if the 'RSA-2048 Support' option is enabled\n\nValues:\n• 1 (True) - RSA-2048 Support is enabled\n• 0 (False)- RSA-2048 Support is disabled\n\n- Default is 0 (False)"
  612. RSA-AREA-SIZE="RSA Area Size"
  613. RSA-AREA-SIZE_help="Determines the size, in bytes, of the area to reserve for RSA keys on CardOS-based tokens\nThe size of the area allocated on the token is determined during token initialization, and cannot be modified without re-initializing the token.\n\nValues:\n• >=0\n (0 = RSA keys may not be created on a token)\n\n- Default depends on the token size:\n• For 16K tokens, enough bytes for three 1024-bits keys\n• For 32K tokens, enough bytes for five 1024-bits keys\n• For larger tokens, enough bytes for seven 1024-bits keys"
  614. LEGACY-FORMAT-VERSION="Legacy Format Version"
  615. LEGACY-FORMAT-VERSION_help="Determines the token format during initialization\n\nValues:\n• 0 - Tokens are formatted as backwardly compatible (CardOS)\n• 4 - Tokens are not formatted as backwardly compatible (CardOS)\n• 5 - Format includes new RSA behavior that is not controlled by key size. Each key is created in a separate directory (CardOS 4.20 FIPS or Java Card-based)\n\n- Default is 4"
  616. RSASecondaryAuthenicationMode="RSA Secondary Authentication Mode"
  617. RSASecondaryAuthenicationMode_help="Determines how RSA private keys are created\n\nValues:\n• 0 - ETCK_2NDAUTH_PROMPT_NEVER\n New RSA private keys are not protected with an additional password\n• 1 - ETCK_2NDAUTH_PROMPT_CONDITIONAL\n •If an external application has set the CKA_ALWAYS_AUTHENTICATE attribute to true, new RSA private keys are protected with an additional password\n •If the attribute has not been set, a prompt appears asking if a new RSA private key is to be protected with an additional password\n• 2 - ETCK_2NDAUTH_PROMPT_ALWAYS\n A prompt appears asking if a new RSA private key is to be protected with an additional password\n• 3 - ETCK_2NDAUTH_MANDATORY\n New RSA private keys must be protected with an additional password\n\n- Default is 3"
  618. PrivateDataCaching="Private Data Caching"
  619. PrivateDataCaching_help="If EnablePrvCache is true, determines if private data is cached\n\nValues:\n• 0 - Private data is not cached\n• 1 - Private data is cached when the token is logged on and erased when the token is logged off\n• 2 - Private data is cached and saved\n\n- Default is 2 (Full caching)"
  620. ;InitApp settings"
  621. AdvancedView="Advanced View"
  622. AdvancedView_help="Determines if the 'Advanced' button is enabled in the eToken Properties application\n\nValues:\n• 1 (True) - The button is enabled\n• 0 (False)- The button is disabled\n\n- Default is 1 (True)"
  623. ShowInTray="Show Tray Icon"
  624. ShowInTray_help="Determines if the eToken PKI Client tray icon is displayed when eToken PKI Client is launched\n\nValues:\n• 1 (True) - The tray icon is displayed\n• 0 (False)- The tray icon is not displayed\n\n- Default is 1 (True)"
  625. ;UI settings"
  626. UseDefaultPassword="Use Default Password"
  627. UseDefaultPassword_help="Determines if the 'Change Password at First Logon' process uses the default eToken Password (1234567890) as the old password, without requiring the user to supply it\n\nValues:\n• 1 (True) - The default eToken Password is automatically inserted in the password field\n• 0 (False)- The default eToken Password is not automatically inserted in the password field\n\n- Default is 0 (False)"
  628. ShowDecimalSerial="Show Decimal Serial Number"
  629. ShowDecimalSerial_help="Determines if the eToken Properties Information window displays the eToken serial number in hexadecimal or in decimal format\n\nValues:\n• 1 (True) - Displays the serial number in decimal format\n• 0 (False)- Displays the serial number in hexadecimal format\n\n- Default is 0 (False)"
  630. ;CAPI Settings
  631. PasswordTimeout="Password Timeout"
  632. PasswordTimeout_help="Determines the number of minutes the CAPI UI-required password is valid\n\nValues:\n• >=0\n (0 = No timeout)\n\n- Default is 0"
  633. LogoutMode="Logout Mode"
  634. LogoutMode_help="Determines if the user is prompted to enter a password for each operation requiring the user to be logged on\n\nValues:\n• 1 (True) - A password prompt is displayed each time\n• 0 (False)- A password prompt is not displayed each time\n\n- Default is 0 (False)"
  635. AsciiPassword="ASCII Password"
  636. AsciiPassword_help="Determines if non-ASCII characters are supported in eToken Passwords, enabling a string containing non-ASCII characters to be used as a smartcard logon password\n\nValues:\n• 1 (True) - Non-ASCII character are supported\n• 0 (False)- Only ASCII characters are supported\n\n- Default is 0 (False)"
  637. ;IEXPLORER.EXE
  638. NoDefaultKeyContainer="No Default Key Container"
  639. NoDefaultKeyContainer_help="Determines if an enrollment certificate from the Microsoft CA service is downloaded to use for creating a user certificate\n\n Note:\n The NoDefaultKeyContainer value is set per process on a per machine basis.\n\nValues:\n• 1 (True) - A Microsoft CA service enrollment certificate is downloaded\n• 0 (False)- A Microsoft CA service enrollment certificate is not downloaded\n\n- Default is\n• 1 (True) for the IEXPLORE.EXE process\n• 0 (False) otherwise"
  640. ;Certificate Store
  641. PropagateUserCertificates="Propagate User Certificates"
  642. PropagateUserCertificates_help="Determines if all user certificates on the token are exported to the user store\n\n Note:\n The PropagateUserCertificates value is saved on a per user basis in HKEY_CURRENT_USER, and not in HKEY_LOCAL_MACHINE.\n\nValues:\n• 1 (True) - User certificates are exported to the user store\n• 0 (False)- User certificates are not exported to the user store\n\n- Default is 1 (True)"
  643. PropagateCACertificates="Propagate CA Certificates"
  644. PropagateCACertificates_help="Determines if all CA certificates on the token are exported to the Trusted CA store\n\nValues:\n• 1 (True) - CA certificates are exported to the Trusted CA store\n• 0 (False)- CA certificates are not exported to the Trusted CA store\n\n- Default is 1 (True)"
  645. SynchronizeStore="Synchronize Store"
  646. SynchronizeStore_help="Determines if store synchronization is enabled\n\nValues:\n• 1 (True) - Store synchronization is enabled\n• 0 (False)- Store synchronization is disabled\n\n- Default is 1 (True)"
  647. RemoveUserCertsOnTokenRemove="Remove User Certificates upon Token Removal"
  648. RemoveUserCertsOnTokenRemove_help="Determines if user certificates are removed from the user store when the token from which they were exported is removed\n\n Note:\n Not limited to the selected token\n\nValues:\n• 1 (True) - User certificates are removed from the user store\n• 0 (False)- User certificates are not removed from the user store\n\n- Default is 1 (True)"
  649. AddToTokenOnNewCertInStore="Add to Token upon New Certificates in Store"
  650. AddToTokenOnNewCertInStore_help="Determines if an option is displayed to import the certificate to the selected token when a new certificate with exportable keys is added to the user store\n\nValues:\n• 1 (True) - An option is displayed to import a new certificate\n• 0 (False)- An option is not displayed to import a new certificate\n\n- Default is 1 (True)"
  651. RemoveFromStoreOnRemoveFromToken="Remove from Store upon Removal from Token"
  652. RemoveFromStoreOnRemoveFromToken_help="Determines if a certificate is removed from the user store when that certificate is removed from the token\n\nValues:\n• 1 (True) - The certificate is removed from the user store\n• 0 (False)- The certificate is not removed from the user store\n\n- Default is 1 (True)"
  653. RemoveFromTokenOnRemoveFromStore="Remove from Token upon Removal from Store"
  654. RemoveFromTokenOnRemoveFromStore_help="Determines if an option is displayed to remove the certificate from the token when that certificate is removed from the user store\n\nValues:\n• 0 - Never; an option is not displayed to remove the certificate\n• 1 - Always; an option is displayed to remove the certificate\n• 2 - An option is displayed to remove only those certificates whose templates are listed in the registry setting 'RemoveFromTokenOnRemoveFromStoreTemplates'\n\n- Default is 0"
  655. RemoveFromTokenOnRemoveFromStoreTemplates="Remove from Token upon Removal from Store Templates"
  656. RemoveFromTokenOnRemoveFromStoreTemplates_help="Lists the templates of the certificates to be removed from the token when the certificates are removed from the user store\n\nRelevant only when the registry setting 'RemoveFromTokenOnRemoveFromStore' is set to 2\n\nValue:\n• Template name(s)"
  657. CertsToRemoveStorePeriod="Certificates to Remove Storage Period"
  658. CertsToRemoveStorePeriod_help="Determines the number of days to attempt to remove certificates from a token that is not connected\n\nRelevant only when the registry setting 'RemoveFromTokenOnRemoveFromStore' is set to 1 or 2\n\nValue:\n• >=0\n\n- Default is 7"
  659. ;Monitor Settings
  660. NotifyPasswordExpiration="Notify Password Expiration"
  661. NotifyPasswordExpiration_help="Determines if the user is notified by a pop-up message in the system tray when the token password is about to expire\n\nValues:\n• 1 (True) - Notify the user\n• 0 (False)- Do not notify the user\n\n- Default is 1 (True)"
  662. ;Password Quality
  663. pqMinLen="Password - Minimum Length"
  664. pqMinLen_help="Determines the minimum password length\n\nValue:\n• >=4\n\n- Default is 6"
  665. pqMixChars="Password - Force Mixed Characters"
  666. pqMixChars_Help="Determines if complexity requirements are enforced, requiring mixed characters in a password\nThe characters to mix are: upper-case letters, lower-case letters, numbers, and special characters\n\nValues:\n• Auto - Complexity requirements are enforced\n• Manual - Manual complexity requirements are enforced\n- Default is Auto"
  667. pqMaxAge="Password - Expiry Period"
  668. pqMaxAge_help="Determines the maximum number of days a password is valid\n\nValues:\n• >=0\n (0 = No expiration)\n\n- Default is 0"
  669. pqMinAge="Password - Minimum Period"
  670. pqMinAge_help="Determines the minimum number of days required before a password change\n\nValues:\n• >=0\n (0 = No minimum)\n\n- Default is 0"
  671. pqWarnPeriod="Password - Expiration Warning Period"
  672. pqWarnPeriod_help="Determines the number of days before expiration during which a warning is displayed\n\nValues:\n• >=0\n (0 = No warning)\n\n- Default is 0"
  673. pqHistorySize="Password - History Size"
  674. pqHistorySize_help="Determines the number of recent passwords that may not be repeated\n\nValues:\n• >=0\n (0 = No minimum)\n\n- Default is 10"
  675. pqNumbers="Password - Include Numbers"
  676. pqNumbers_help="Determines if the password may include numbers\n\nValues:\n• 0 - Numbers are permitted\n• 1 - Numbers are forbidden\n• 2 - Numbers are mandatory\n\n- Default is 0"
  677. pqLowerCase="Password - Include Lower-Case"
  678. pqLowerCase_help="Determines if the password may include lower-case letters\n\nValues:\n• 0 - Lower-case letters are permitted\n• 1 - Lower-case letters are forbidden\n• 2 - Lower-case letters are mandatory\n\n- Default is 0"
  679. pqUpperCase="Password - Include Upper-Case"
  680. pqUpperCase_help="Determines if the password may include upper-case letters\n\nValues:\n• 0 - Upper-case letters are permitted\n• 1 - Upper-case letters are forbidden\n• 2 - Upper-case letters are mandatory\n\n- Default is 0"
  681. pqSpecial="Password - Include Special Characters"
  682. pqSpecial_help="Determines if the password may include special characters, such as @, !, &\n\nValues:\n• 0 - Special characters are permitted\n• 1 - Special characters are forbidden\n• 2 - Special characters are mandatory\n\n- Default is 0"
  683. pqMaxRepeated="Password - Maximum Repeated"
  684. pqMaxRepeated_help="Determines the maximum number of consecutive times any character can be used in a password\n\nValues:\n• >=0\n (0 = No maximum)\n\n- Default is 3"
  685. pqCheckInit="Password Quality Check on Initialization"
  686. pqCheckInit_help="Determines if the eToken Password quality is checked and enforced when a token is initialized\n\n Note:\n We recommend that this policy not be set when tokens are enrolled using TMS.\n\nValues:\n• 1 (True) - The password policy is enforced\n• 0 (False)- The password policy is not enforced\n\n- Default is 0"
  687. pqModifiable="Password Quality Modifiable"
  688. pqModifiable_help="Determines if the password policy on a newly initialized token can be modified by the owner\nSee the 'pqOwner' registry key\n\nValues:\n• 1 (True) - The password policy can be modified by the owner\n• 0 (False)- The password policy cannot be modified by the owner\n\n- Default is:\n• 1 (True) for administrator-owned tokens\n• 0 (False) for user-owned tokens"
  689. pqOwner="Password Quality Owner"
  690. pqOwner_help="Determines the owner of the password policy on a newly initialized token, and determines the default of the 'pqModifiable' registry key\n\nValues:\n• 0 - The owner of the password policy is an administrator\n• 1 - The owner of the password policy is a user\n\n- Default is:\n• 0 (Administrator) if the token has an Administrator Password\n• 1 (User) if the token does not have an Administrator Password"
  691. AccessControl="Access Control"
  692. AccessControl_help="Determines which GUI Access Control Settings are enabled in the eToken Properties application\n\nValues:\n• 1 (True) - The option is enabled\n• 0 (False)- The option is disabled\n\n- Default is 1 (True) for all properties"