The following describes a simple way to test your new PIVKey with HTTPS client certificate authentication against a web site.
All standard PIVKeys are provided with a digital certificate issued by the Taglio PIVKey device CA. This allows you to test the certificate with any application, without first loading your own certificate.
Make sure you have inserted the PIVKey Token into a USB slot, or have inserted the PIVKey smart card into the Smart Card Reader.
To test, bring up Microsoft Edge, Internet Explorer or Chrome and browse to:
You will be requested to choose the certificate to log on to the test site, as shown here in Google Chrome:
By pressing the "Certificate Information" button, you can look at the details of the PIVKey certificate.
Select OK on the certificate selection dialog and the PIN request dialog will appear.
Enter the PIN (by default this is "000000") and the Test Web site will come up.
You can confirm that the PIVKey certificate was used by selecting the "Certificate Info" page.
If the authentication fails, you will see the following message:
On Microsoft Edge, the certificate confirmation screen looks as follows:
And the PIN entry screen looks as follows:
Note: Testing out of the box with Firefox is not possible. Firefox Browser requires an additional PKCS11 component that supports the PIV interface.