“Grant or deny this application permission to use this key” message
I am using AnyConnect software on Windows 7 OS. I got new client certificate to import with dedicated import password. And when I start AnyConnect I get message "Grant or deny this application permission to use this key" and field to write password if I choose to grant. Which password is this? A tried import password but it's not.
windows-7 certificate cisco-anyconnect
asked Dec 10 at 14:15
John
635
add a comment |
I am using AnyConnect software on Windows 7 OS. I got new client certificate to import with dedicated import password. And when I start AnyConnect I get message "Grant or deny this application permission to use this key" and field to write password if I choose to grant. Which password is this? A tried import password but it's not.
windows-7 certificate cisco-anyconnect
asked Dec 10 at 14:15
John
635
add a comment |
I am using AnyConnect software on Windows 7 OS. I got new client certificate to import with dedicated import password. And when I start AnyConnect I get message "Grant or deny this application permission to use this key" and field to write password if I choose to grant. Which password is this? A tried import password but it's not.
windows-7 certificate cisco-anyconnect
asked Dec 10 at 14:15
John
635
I am using AnyConnect software on Windows 7 OS. I got new client certificate to import with dedicated import password. And when I start AnyConnect I get message "Grant or deny this application permission to use this key" and field to write password if I choose to grant. Which password is this? A tried import password but it's not.
windows-7 certificate cisco-anyconnect
windows-7 certificate cisco-anyconnect
asked Dec 10 at 14:15
John
635
asked Dec 10 at 14:15
John
635
edited Dec 10 at 15:34
asked Dec 10 at 14:15
John
635
asked Dec 10 at 14:15
John
635
asked Dec 10 at 14:15
John
635
635
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
Since this is only happening on this one certificate, then I assume that the
group policy
System cryptography: Force strong key protection for user keys stored on the computer
was not set on the computer, or it would happen with other certificates.
It sounds like that when you imported the certificate,
or when the certificate was created,
it was opted to enable strong private key protection.
The option may have been worded like this:
"Enable strong private key protection. You will be prompted every time the private key is used by an application if you enable this option".
You might be able to get around this by re-importing the certificate while not
checking this option.
Or if this option is built-into the certificate itself, try replacing the certificate
by exporting it to a PFX file and re-importing it.
If this does not work, demand from AnyConnect a certificate that does not have
strong private key protection enabled.
For more information see the Microsoft article
What is a strong key protection in Windows?
answered Dec 14 at 9:29
harrymc
252k12259560
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1382329%2fgrant-or-deny-this-application-permission-to-use-this-key-message%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
Since this is only happening on this one certificate, then I assume that the
group policy
System cryptography: Force strong key protection for user keys stored on the computer
was not set on the computer, or it would happen with other certificates.
It sounds like that when you imported the certificate,
or when the certificate was created,
it was opted to enable strong private key protection.
The option may have been worded like this:
"Enable strong private key protection. You will be prompted every time the private key is used by an application if you enable this option".
You might be able to get around this by re-importing the certificate while not
checking this option.
Or if this option is built-into the certificate itself, try replacing the certificate
by exporting it to a PFX file and re-importing it.
If this does not work, demand from AnyConnect a certificate that does not have
strong private key protection enabled.
For more information see the Microsoft article
What is a strong key protection in Windows?
answered Dec 14 at 9:29
harrymc
252k12259560
add a comment |
Since this is only happening on this one certificate, then I assume that the
group policy
System cryptography: Force strong key protection for user keys stored on the computer
was not set on the computer, or it would happen with other certificates.
It sounds like that when you imported the certificate,
or when the certificate was created,
it was opted to enable strong private key protection.
The option may have been worded like this:
"Enable strong private key protection. You will be prompted every time the private key is used by an application if you enable this option".
You might be able to get around this by re-importing the certificate while not
checking this option.
Or if this option is built-into the certificate itself, try replacing the certificate
by exporting it to a PFX file and re-importing it.
If this does not work, demand from AnyConnect a certificate that does not have
strong private key protection enabled.
For more information see the Microsoft article
What is a strong key protection in Windows?
answered Dec 14 at 9:29
harrymc
252k12259560
add a comment |
Since this is only happening on this one certificate, then I assume that the
group policy
System cryptography: Force strong key protection for user keys stored on the computer
was not set on the computer, or it would happen with other certificates.
It sounds like that when you imported the certificate,
or when the certificate was created,
it was opted to enable strong private key protection.
The option may have been worded like this:
"Enable strong private key protection. You will be prompted every time the private key is used by an application if you enable this option".
You might be able to get around this by re-importing the certificate while not
checking this option.
Or if this option is built-into the certificate itself, try replacing the certificate
by exporting it to a PFX file and re-importing it.
If this does not work, demand from AnyConnect a certificate that does not have
strong private key protection enabled.
For more information see the Microsoft article
What is a strong key protection in Windows?
answered Dec 14 at 9:29
harrymc
252k12259560
Since this is only happening on this one certificate, then I assume that the
group policy
System cryptography: Force strong key protection for user keys stored on the computer
was not set on the computer, or it would happen with other certificates.
It sounds like that when you imported the certificate,
or when the certificate was created,
it was opted to enable strong private key protection.
The option may have been worded like this:
"Enable strong private key protection. You will be prompted every time the private key is used by an application if you enable this option".
You might be able to get around this by re-importing the certificate while not
checking this option.
Or if this option is built-into the certificate itself, try replacing the certificate
by exporting it to a PFX file and re-importing it.
If this does not work, demand from AnyConnect a certificate that does not have
strong private key protection enabled.
For more information see the Microsoft article
What is a strong key protection in Windows?
answered Dec 14 at 9:29
harrymc
252k12259560
answered Dec 14 at 9:29
harrymc
252k12259560
answered Dec 14 at 9:29
harrymc
252k12259560
answered Dec 14 at 9:29
harrymc
252k12259560
252k12259560
add a comment |
add a comment |
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1382329%2fgrant-or-deny-this-application-permission-to-use-this-key-message%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
