Login With EIDAuthenticate on Stand Alone Windows Computers

Compatible Nitrokeys

3A/C/Mini

Passkey

HSM 2

Pro 2

FIDO2

Storage 2

Start

U2F

active

inactive

inactive

active

inactive

active

inactive

inactive

  1. Download and install the latest version of OpenSC. Please install the OpenPGP-CSP driver instead if using Nitrokey Storage 2 or Nitrokey Pro 2.

  2. Download and install EIDAuthenticate.

    Note

    The free community edition is disabled. You may test the enterprise edition instead.

  3. Start EIDConfigurationWizard.exe

  4. Select “Associate a new certificate”

    img1
  5. Select or generate a Certificate Authority which should issue the user’s certificate on the Nitrokey.

    img2
  6. Enter the user PIN which you defined previously in step 4. Wait a moment until a new keypair and certificate are generated. In case your Nitrokey is not detected you may want to execute “certutil -scinfo” for troubleshooting.

    img3
  7. Select the newly generated certificate and press continue.

    img4
  8. All checks should succeed. Press continue.

    img5
  9. Enter the password of your user account.

    img6
  10. Enter the user PIN which you defined previously in step 4.

    img7
  11. The final screen may look like this.

    img8

You may perform further configurations such as activate the force smart card policy or automatically lock the computer when removing the Nitrokey (by using EIDConfigurationWizardElevated.exe).

From now on, when logging on to your Windows computer you need to connect the Nitrokey and enter your PIN.

img9