This method is necessary for those who want to minimize the amount of software installed on the server.

Installation of the minidriver

The minidriver is a software component between the built-in encryption provider Microsoft Smart Card Base Cryptographic Service Provider and the Rutoken, it is designed to work with smart cards (and tokens) in the system. In most operating systems* the minidriver is installed automatically from Windows Update. To check whether the "minidriver" is installed on your computer, you can connect the Rutoken to it and open the "Device Manager". If the minidriver could not be installed **, we suggest using the instructions below.

*On Windows XP, the minidriver is installed only manually.

**There are problems getting updates or the OS is damaged.

To install the minidriver:

  1. Follow the link:
    http://www.catalog.update.microsoft.com/Search.aspx?q=Rutoken
  2. In the table, find the line that has "Windows 10 and later drivers,Windows 10 S and Later Servicing Drivers,Windows Server Drivers" written in the Products column.
  3. In this line, click on the Download button. The installation window will open.
  4. Click on the link to the archive with the minidriver.
  5. Save this archive on your computer.
  6. Close the installation window.
  7. Find the saved archive and extract its contents to the current folder.
  8. Right-click on the name of the rtMiniDrv.inf file and select Install.
  9. In the window that opens, click on the Yes button to confirm the changes. As a result, the minidriver will be installed. 
  10. Next, make sure that it is really installed. 

To check it out:

  1. Connect the Rutoken EDS device to the computer.
  2. Open Device Manager.
  3. Double-click on the Smart cards line. As a result, the line Aktiv Co. Rutoken Minidriver should be displayed.
  4. If this line is displayed, the minidriver is installed.
  5. If not, repeat the installation process.

Remote access to VPN networks

For the configuration you need a computer with the Windows 10 operating system and Rutoken drivers installed.

When establishing a remote connection to a remote access server, the client is authenticated by the server, and, vice versa, the client verifies that the connection is made to the needed server. However, it is possible to disable the verification of the server by the client, which will negatively affect the security of the connection, so it is recommended to validate the server.

To create and configure the remote connection to a remote access server:

  1. Open the Control panel.
  2. Click on the name  Network and Internet.
  3. Click on the name Network and Sharing Management Center.
  4. Click on the name Creating and configuring new connection or network.
  5. Click on the name Connection to the workplace. Click on the Next button.
  6. If the system already has configured connections, then set the switch to No, create a new connection. Click on the Next button.
  7. Click on the line Use my Internet connection (VPN).
  8. Enter the address of the server (in the field Internet Address) to which the remote connection will be made. 
  9. Enter the name of the remote connection you are creating (in the field Name of the destination object).
  10. Check the box Use the smart card and click on the Create button. The remote connection has been created.

To connect to the server:

  1. On the Desktop, click on the Network icon in the lower right corner.
  2. Click on the link Network parameters.
  3. On the left side of the window Settings select VPN.
  4. Click on the name of the VPN connection and click Connect.
  5. Wait for the operating system to access the Rutoken device.
  6. Enter the PIN code of the Rutoken Device User. Click on the OK button.

  7. Wait until the correctness of the secret information stored on the Rutoken device is verified.
  8. When you connect for the first, you will receive a request to trust the server. To continue connecting, click on Connect. As a result, the connection will be established.

Connecting to a secure Website

For the configuration you need a computer with the Windows 10 operating system and Rutoken drivers installed.

The settings will be carried out with the rights of the Admin account.

The Admin user was previously issued a certificate of the User with a smart card type (any certificate that allows client authentication will do).

Description of configuring browser settings for authentication using a digital certificate stored on the Rutoken device.

  
To connect to a secure website:

  1.  Open the Internet Explorer browser.
  2. Click on the Service icon.
  3. Select the Browser properties item. 
  4. In the window Browser Properties go to the tab Content.
  5. Click on the [Certificates] button. 
  6. In the window Certificates check that the required certificate is registered in the local storage (in our example, this is a certificate of the User with a smart card type issued to the Admin user).
  7. Click on the certificates line and click on [View].
  8. Check the certificate details and click on the [OK] button.
  9. In the window Certificates click on the [Close] button.
  10. Connect the Rutoken device to the computer (the device must have an Admin user certificate).
  11. Enter the resource address. This example shows the possibility of issuing a certificate via a web form through a secure communication channel with hardware authentication.  
  12. In the window for entering the User's PIN code, enter the PIN code and click on the [OK] button.
  13. Wait for the connection setup process to finish. As a result, the connection will be established.