Using OpenSC enabled token for signing PDF documents in Adobe

[ndshah88]

Has anyone tried to use epass2003 or entersafe tokens to sign PDF documents via Adobe?

If so, can someone advise how does Adobe know that certain certificates that are stored in the certmanager of Windows need to communicate with a smart card while others don't?

Is there a specific way in which the certificates are stored in the certificate manager of Windows?

[dengert]

There is an outstanding issue with epass2003 FIPS version. #2843 that may be related.

Can you run this command from #2834 to reat the ATR and a data object with flags:

opensc-tool --card-driver default -a --send-apdu 00:CA:01:86:00

If it looks like https://github.com/OpenSC/OpenSC/issues/2843#issuecomment-1952917609 it is one of the tokens with the problem. Feitian has been slow to respond to the bug reports. Please submit a bug report if you nave one of these. In U.S. it is https://ftsafe.us/support/

Last know updates which appear to be from Feitian are from: @haijie-ftsafe and @xaqfan

To answer your question, Windows when it sees a smartcard will add add a certificate to the cert store when it sees a smartcard with info on which card it came from. This may be long term or just while the card is inserted.

Some commands you can use are certutil.exe -v -SCInfo

[jasperdnar]

I am also looking for the same, I wonder how Adobe/Windows recognizes the certificate from card and show it in Windows Digital ID?