Local configuration
The name of the CSP(Cryptographic Service Provider) at Dinamo is Dinamo HSM Cryptographic Provider.
The CSP parameters are kept in a file (.ini). The settings are placed in the scope of the user profile and are therefore valid and recognized only for applications running under the user profile of the current operating system.
There is no need for an administrative profile or elevation of privilege for the user to set or edit the CSP parameters. The CSP settings are the same for 32-bit and 64-bit applications.
To edit the configuration, open the Dinamocon console and click on Environment configuration.
Info
For more information on settings in the Session and Log tabs, see the topic Environment configuration.
The CSP configuration options are detailed below.
Select the MS CAPI tab.
CNG Qualified
By checking this option, the library will use CNG whenever possible or necessary.
Note
To enable it, you need to start DINAMOcon with administrator permission.
CNG compatibility mode
Force CNG to use legacy mode AT_SIGNATURE. In this case the key names will be understood as container names with a slot type AT_SIGNATURE. This option is a workaround for specific cases and should only be used when really necessary.
Short sessions
By checking this option, the library will open and close sessions at each call. It is necessary to use this option for some third-party applications such as PJe-Office.
Serialization
It performs some operations in serialized form.
The MSCAPI API functions affected by this option:
CryptCreateHash()CryptSignHash()CryptVerifySignature()
Attention
Overall performance can be greatly affected.
Containers
See the specific topic Containers / Certificate Store.
Test connection
Before running a test with new settings, click the Apply button to save the changes.
The Test button can be used to check the connection to the HSM, including authentication of the credential entered. The test is carried out with the settings saved in a file, and not with the parameters displayed on the screen.