Skip to main content
Skip table of contents

PIN Pad for the Remote Workstation

The PIN Pad Daemon Software must be downloaded and installed on the remote workstation.
This workstation requires a Reiner SCT cyberJack one smart card reader connected via USB.
It forwards all PIN Pad actions and information to the Next Generation Hardware Appliance.

In the subsection PIN Pad Software 2 buttons are displayed to select from:

  • Download for Windows

  • Download for Linux

Select the download depending on the operating system of your remote workstation and follow the instructions.

PIN Pad Software Download Process for Windows

  1. Log in to your Next Generation Hardware Appliance.

  2. Open the Security page.

  3. In the section PIN Pad Management go to PIN Pad Software.

  4. Select and click: Download for Windows.

  5. The download starts and stores a .zip file.

  6. In the download directory of your browser extract the .zip file.

  7. Copy the content of SW_Windows_PIN_Pad_Daemon.zip to directory %USERPROFILE%\Utimaco.

  8. Open the Device Manager:

  9. Search for USB-devices.

  10. Select Reiner SCT cyberJack one smart card reader.

  11. Right click on the card reader and select Update driver.

  12. Search for %USERPROFILE%\Utimaco\cyberJack\Driver

  13. Click OK to continue.

  14. Open terminal as admin.

  15. Change to directory %USERPROFILE%\Utimaco\ppd.

  16. Modify ppd.cfg file:
    Enable: AuthMech=1

    Enable Passfile: %USERPROFILE%\Utimaco\ppd\ppd.pwd.

  17. Modify ppd.pwd file:
    Enable Password: create a password

  18. Execute terminal command: ppd.exe -config=%USERPROFILE%\Utimaco\ppd.cfg -foreground.

  19. Allow connections.

  20. Navigate to Next Generation Hardware Appliance.

  21. Open the Security page.

  22. In the section PIN Pad Management go to Remote PIN Pad Locations.

  23. Click Add remote PIN Pad to open the corresponding form.
    Host: enter the IPv4/v6 address of the remote PIN Pad host.
    Port: enter the port of the remote PIN Pad.
    Password: enter password (same as set in Step 17 %USERPROFILE%\Utimaco\ppd\ppd.pwd file).
    Set as default: check to set this Remote PIN Pad as default.
    Test Connection button: test if the Next Generation Hardware Appliance can connect to the PIN Pad Daemon host with the provided port.

  24. Click Add to finish.

The new PIN Pad has been added and is displayed in the section Smart Card Management, Connected PIN Pads under PIN Pad Operations.

PIN Pad Software Download Process for Linux

  1. Log in to your Next Generation Hardware Appliance.

  2. Open the Security page.

  3. In the section PIN Pad Management go to PIN Pad Software.

  4. Select and click: Download for Linux.

  5. The download starts and stores a .tar file.

  6. In the download directory of your browser extract the .tar file.

  7. Modify ppd.cfg file:
    Enable: AuthMech=1

    Enable Passfile:absolute pathppd.pwdfile.

  8. Modify ppd.pwd file:
    Enable Password: create a password

  9. Run the PIN Pad Daemon ./ppd -config=ppd.cfg -foreground with root permissions e.g. with sudo.

  10. Navigate to Next Generation Hardware Appliance.

  11. Open the Security page.

  12. In the section PIN Pad Management go to Remote PIN Pad Locations.

  13. Click Add remote PIN Pad to open the corresponding form.
    Host: enter the IPv4/v6 address of the remote PIN Pad host.
    Port: enter the port of the remote PIN Pad.
    Password: enter password (same as set in Step 8ppd.pwd file).
    Set as default: check to set this Remote PIN Pad as default.
    Test Connection button: test if the Next Generation Hardware Appliance can connect to the PIN Pad Daemon host with the provided port.

  14. Click Add to finish.

The new PIN Pad has been added and is displayed in the section Smart Card Management, Connected PIN Pads under PIN Pad Operations.

How to set PIN Pad Daemon (PPD) Password

The precondition for setting the password for the PIN Pad Daemon via Webconf is as follows:

  • Edit and save the ppd.pwd file with the password.

  • Edit ppd.cfg file and set AuthMech to 1.

  • The Passfile path should point to ppd.pwd path.

  • Restart the PIN Pad Daemon if its already running.

  • In Webconf:
    pass the password that has been edited in ppd.pwd.

Max. 79 characters are accepted, excluding commas, blanks or hashtags.
Exact definitions for the password can be found in the file CryptoServer_Administration_Manual.pdf in the utimaco CryptoServer Administration Manual.

It is possible to specify more than one PIN Pad location.
One of the locations should be set as the default.

For each slot, the user can select whether to use the local or the remote PIN Pad for the SCA user.
For example:

  • Slot 1 has SCA activated with 3 users.

  • SCA user 1 is authenticated with the local PIN Pad.

  • SCA user 2 is authenticated with the remote PIN Pad from location A.

  • SCA user 3 is authenticated with the remote PIN Pad from location B.

Check whether the PIN Pad Daemon (PPD) has been configured correctly

To check whether the remote PIN Pad has been successfully secured using the Password and that the PIN Pad Daemon has been configured correctly with password, do the following:

  1. Log in to your Next Generation Hardware Appliance.

  2. Open the Security page.

  3. Go to the Smart Card Management section.
    All connected PIN Pads and the possible actions for these are listed under PIN Pad Operations.

  4. In the Actions column on the right, click e.g. Change PIN on Backup Protection Smart Card.

  5. If an Error Message appears at the top of the display, the password set may be incorrect. Otherwise, if the PIN Pad display lights up and shows a message (to abort the PIN Pad interaction press Cancel on the PIN Pad), the connection to the PIN Pad has been successfully established.

  6. If an error message is displayed open the PPD configuration with an editor and verify the settings.

To be absolutely sure that this connection is password-protected, enter an incorrect PIN Pad password. This is the only way to determine that no connection can be established with an incorrect password.

Repeat the process described above.

If the PIN Pad display lights up despite the incorrect password, the configuration of the PPD is probably incorrect.

Open the PPD configuration with an editor and verify the settings.

Please refer to PIN Pad Daemon for further information.

Authmech=1 PPD configuration:
An empty or incorrect password immediately lead to an unexpected error, only the correct password leads to the PIN Pad interaction. To abort the PIN Pad interaction press Cancel on the PIN Pad.

Authmech=0 PPD configuration:
Editing attempts result in the PIN Pad interaction. To abort the PIN Pad interaction press Cancel on the PIN Pad.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close