Info |
---|
This article includes updates for Smart ID 23.04.6. |
Expand | ||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||||||||||||||
Description Use this task to generate a response using the card manager key and a challenge for the offline unblocking process. Configuration To use this task, configure the following delegate expression in your service task:
The following parameter can be configured in Identity Manager Admin:
The following dependencies must be configured in the Spring configuration:
|
Expand | ||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||||||||
Description Use this task to generate a 2DES / 3DES key as card manager key for minidriver compatible cards. The value generated is saved in an encrypted field. Configuration To use this task, configure the following delegate expression in your service task:
The following parameters can be configured in Identity Manager Admin:
The following dependencies must be configured in the Spring configuration:
|
Expand | ||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||||||||||||||
Description Use this task to generate a value for PIN and PUK according to certain rules (length, allowed characters) and to archive those values for later retrieval during card production or for PIN letter printing. Configuration To use this task, configure the following delegate expression in your service task:
The following parameters can be configured in Identity Manager Admin:
|
Expand | ||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||||||||||||||
Description Use this task to generate a password or another secret and to archive the value for later retrieval during card production or for PIN letter printing. The secret value is also hashed and stored in a separate field for easier comparison. The hash algorithm is defined in Spring since it must be the same as the one that is used for checking the passwords during login. Configuration To use this task, configure the following delegate expression in your service task:
The following parameters can be configured in Identity Manager Admin:
The following dependencies must be configured in Spring:
|
Expand | |||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| |||||||||||||||||||||||||||
Description Use this task to decrypt values that were encrypted using the INSIDE server. Configuration To use this task, configure the following delegate expression in your service task:
The following parameters can be configured in Identity Manager Admin:
|
|
Example value:
| The value represent a key label that is present in the HSM. | |
padding |
Valid values:
| Padding scheme to be used. | |
iv |
Default value:
| Initialization Vector, value must be a multiple of 8. | ||
<Processmap_Field> | - | Allowed multiple times for each field of the processmap that should be decrypted. The field should contain a secret reference. After decryption the value for the reference will be updated if successful. | |
aleaPin |
| Value:
Example value:
| PIN used in the decryption workflow in order to get the correct plain values for PIN and PUK. The corresponding value is a JUEL expression consisting of DataPool (for example PcmDpEmployeeCard) followed by the field name of aleaPin (for example aleaPin). |