The certificates are stored in the settings.xml file, which is located in the folder c:\ProgramData\iba\Name of application\Certificates. This file is automatically encrypted.
There are a number of measures whereby certificates with private keys can be used to protect your identity or that of your organization. Specifically, these are measures that make their simple export and reuse in Windows or other applications more difficult.
-
Certificates are always stored in encrypted form.
-
For certificates with a private key, the input of a password is required...
-
when a new certificate is generated
-
when a certificate with a private key is exported
-
when a certificate with a private key is imported
-
-
Certificates with a private key can only be exported if there is also a password for the key. If there is no password or the password is unknown, the certificate can no longer be exported. Therefore, keep the passwords in a safe place.
-
The password for a private key cannot be changed.
-
It is not necessary to enter a password to use a certificate. The
settings.xmlfile can be copied from one installation to another to transfer the certificates there. Password entry is not required for this either.
Should the private key fall into the wrong hands, many types of misuse are possible. Therefore, make sure that the passwords are kept safe.