This method is necessary for those who want to minimize the amount of software installed on the server.

Installation of the minidriver

The minidriver is a software component between the built-in encryption provider Microsoft Smart Card Base Cryptographic Service Provider and the Rutoken, it is designed to work with smart cards (and tokens) in the system. In most operating systems* the minidriver is installed automatically from Windows Update. To check whether the "minidriver" is installed on your computer, you can connect the Rutoken to it and open the "Device Manager". If the minidriver could not be installed **, we suggest using the instructions below.

*On Windows XP, the minidriver is installed only manually.

**There are problems getting updates or the OS is damaged.

To install the minidriver:

1. Follow the link:
   http://www.catalog.update.microsoft.com/Search.aspx?q=Rutoken
2. In the table, find the line that has "Windows 10 and later drivers,Windows 10 S and Later Servicing Drivers,Windows Server Drivers" written in the Products column.
3. In this line, click on the Download button. The installation window will open.
4. Click on the link to the archive with the minidriver.
5. Save this archive on your computer.
6. Close the installation window.
7. Find the saved archive and extract its contents to the current folder.
8. Right-click on the name of the rtMiniDrv.inf file and select Install.
9. In the window that opens, click on the Yes button to confirm the changes. As a result, the minidriver will be installed. 
10. Next, make sure that it is really installed. 

To check it out:

1. Connect the Rutoken EDS device to the computer.
2. Open Device Manager.
3. Double-click on the Smart cards line. As a result, the line Aktiv Co. Rutoken Minidriver should be displayed.
4. If this line is displayed, the minidriver is installed.
5. If not, repeat the installation process.

Remote access to VPN networks

For the configuration you need a computer with the Windows 10 operating system and Rutoken drivers installed.

When establishing a remote connection to a remote access server, the client is authenticated by the server, and, vice versa, the client verifies that the connection is made to the needed server. However, it is possible to disable the verification of the server by the client, which will negatively affect the security of the connection, so it is recommended to validate the server.

To create and configure the remote connection to a remote access server:

1. Open the Control panel.
2. Click on the name  Network and Internet.
3. Click on the name Network and Sharing Management Center.
4. Click on the name Creating and configuring new connection or network.
5. Click on the name Connection to the workplace. Click on the Next button.
6. If the system already has configured connections, then set the switch to No, create a new connection. Click on the Next button.
7. Click on the line Use my Internet connection (VPN).
8. Enter the address of the server (in the field Internet Address) to which the remote connection will be made. 
9. Enter the name of the remote connection you are creating (in the field Name of the destination object).
10. Check the box Use the smart card and click on the Create button. The remote connection has been created.

To connect to the server:

1. On the Desktop, click on the Network icon in the lower right corner.
2. Click on the link Network parameters.
3. On the left side of the window Parameters select VPN.
4. Click on the name of the VPN connection and click Connect.
5. Wait for the operating system to access the Rutoken device.
6. Enter the PIN code of the Rutoken Device User. Click on the OK button.
7. Wait until the correctness of the secret information stored on the Rutoken device is verified.
8. When you connect for the first, you will receive a request to trust the server. To continue connecting, click on Connect. As a result, the connection will be established.

Connecting to a secure Website

For the configuration you need a computer with the Windows 10 operating system and Rutoken drivers installed.

The settings will be carried out with the rights of the Admin account.

The Admin user was previously issued a certificate of the User with a smart card type (any certificate that allows client authentication will do).

Description of configuring browser settings for authentication using a digital certificate stored on the Rutoken device.

  
To connect to a secure website:

1.  Open the Internet Explorer browser.
2. Click on the Service icon.
3. Select the Browser properties item. 
4. In the window Browser Properties go to the tab Content.
5. Click on the Certificates button. 
6. In the window Certificates check that the required certificate is registered in the local storage (in our example, this is a certificate of the User with a smart card type issued to the Admin user).
7. Click on the certificates line and click on View.
8. Check the certificate details and click on the OK button.
9. In the window Certificates click on the Close button.
10. Connect the Rutoken device to the computer (the device must have an Admin user certificate).
11. Enter the resource address. This example shows the possibility of issuing a certificate via a web form through a secure communication channel with hardware authentication.  
12. In the window for entering the User's PIN code, enter the PIN code and click on the OK button.
13. Wait for the connection setup process to finish. As a result, the connection will be established.
    
    

Configuring the connection to the Terminal Server

For the configuration you need a computer with the Windows 10 operating system and Rutoken drivers installed.

A certificate of the User with a smart card or Login with a smart card type must be installed on the Rutoken device.

The Admin account will be used for remote server management.
  
To configure the connection to the Terminal Server:

1. Open the app Remote desktop connection.
2. Enter the name or IP address of the terminal server. 
3. Click on Show parameters.
4. Go to the tab Local resources. 
5. In the section Local devices and resources click on Show more... 
6. The Smart cards checkbox is selected.
7. Click on the OK.
   If the Rutoken drivers are not installed in the system, this setting is absent from Remote desktop connection.
   
8. In the window Remote desktop connection click on Connect.
9. Enter the PIN code of the Rutoken device User and click on the OK button.
10. As a result, the connection will be successfully established.

If in the snap-in called Active Directory users and computers you set the switch to Smart card is required to log in to the network interactively in the user properties, the user will be able to connect to the server only if there is a Rutoken device with the necessary certificate. It will be impossible to connect to a Remote Desktop using Username and Password.