General Instructions for ID Device PasswordCenter
V5.0
Content
General
The PasswordCenter is a function for the administration
of user data for password-protected user applications and Internet pages
with fingerprints. The data (password and user ID, such as a user name,
employee number, PIN, e-mail address, etc.) can be automatically transferred
to the user program using the PasswordCenter. Once registered, a user's
data is automatically entered by the PasswordCenter after completion of
fingerprint verification.
The PasswordCenter requires installation
of "Siemens ID Mouse Professional V5.0" or "Cherry FingerTIP ID Board V5.0"
and registration of the user and fingerprint data in the ID Mouse Professional
User Administration or FingerTIP ID Board User Administration.
Starting
the PasswordCenter
The PasswordCenter is automatically started
at system startup for the user logged into the system. It can also be started
with Start > Programs > ID Mouse Professional > PasswordCenter > Start
PasswordCenter.
The 
icon in the task bar is a visible verification of PasswordCenter.
"Fingerprint
Recognition" Dialog
This dialog mask is displayed whenever
a dialog registered in the PasswordCenter or the PasswordCenter password
management function is started.
The fingerprint recognition process is
automatically activated when the dialog mask is displayed or by clicking
on the "Start Capture" button. Information to help the user during the
recognition process is displayed in the box on the right side of the mask
- for example, "Please clean the sensor" and "Please cover the whole sensor".
The recognition/capture process can be stopped at any time by pressing
any key.
After successful verification, either the
PasswordCenter password management function is started (if the finger recognition
dialog was activated by clicking on the icon on the task bar and the menu
item "Password Management" selected) or the registered password dialog
is assigned the user's data.
The fingerprint recognition dialog mask
is closed by clicking on the "Close" button.
The PasswordCenter function cannot be used
if no fingerprint is registered with the user management function. In this
case, the PasswordCenter software issues a corresponding message.
The dialog mask will not appear when starting
a registered password dialog if the "Single Sign On" option has been enabled
in the password management dialog. The dialog mask is automatically assigned
the user data without renewed verification by fingerprint.
Register
a Password Dialog in "PasswordCenter Password Management"
To register your password for a user application
or Internet page, you must first start the application or web page for
the application..
When the application's password dialog
appears, start the PasswordCenter password management function by clicking
on the PasswordCenter icon
with the right mouse button and selecting "Password Management".
You must then authenticate yourself by
fingerprint (refer to "Fingerprint
Recognition" dialog). The PasswordCenter password management mask appears
only after successful authentication.
The auto recognition section of the mask
indicates the active dialog window. If the password dialog is associated
with an Internet page, the page's URL will also be displayed.
These boxes must now be filled with the
data for the selected password dialog..
The password dialog displayed in the auto
recognition section of the mask can be added to the password management
function with the "Add dialog" button. After clicking on the button, the
"Dialog Registration" mask appears. Here you have to enter your data (password
and user ID, such as the user name, employee number, PIN or e-mail address)
for the password dialog (refer to "Dialog
Registration" ).
You can also change your password data
for registered dialogs. To do so, select the appropriate dialog from the
list of registered dialogs and click on the "Change dialog" button.
To remove a registered password dialog
from the list of registered dialogs, select one from the list and press
the "Remove dialog" button. You will then be prompted to confirm the deletion
of the dialog (press "Yes" to confirm).
If the "Single Sign On" option is enabled,
the fingerprint recognition dialog will only appear at the start of the
password management, but not when a dialog registered in the PasswordCenter
starts.
Example of use of the "Single Sign On" option
The PasswordCenter is used to open encrypted
e-mails. The user has to authenticate himself/herself per fingerprint for
every encrypted e-mail. If the "Single Sign On" option is enabled, the
user need only present his or her fingerprint when signing onto the PC.
When opening an encrypted e-mail, the PasswordCenter recognizes the password
dialog and opens the e-mail with the correct password without any further
fingerprint recognition actions.
Security information:
Single Sign On not recommended for high security applications!
Note that the "Single
Sign On" option represents a certain security risk. Should a user leave
his PC unprotected, another user could read, e.g., his e-mails without
having to enter a password or undergo fingerprint authentication.
The PasswordCenter
password management function is closed by clicking on the "Close" button.
The registered dialogs are then detected when they start and the user's
data is automatically assigned after verified fingerprint recognition.
Entering
Password Data for a Password Dialog
This dialog appears when adding a new password
dialog or modifying an already registered password dialog.
The data of the password dialog of a target
program is automatically entered in the "Dialog Registration" mask and
saved together with the user name (user ID, employee number, PIN, e-mail
address, etc.) and/or password under an individual name for each target
program (usually the name of the program).
Title: The title you assign here,
is displayed in the list of registered dialogs in the "Password
Management" dialog box. Any name can be assigned as a title.
Target program: Program name of
the target program as detected by PasswordCenter.
Window text: The window text of
the target program recognized by the PasswordCenter. You can use the wildcard
* for changing contents.
URL: The web address of the program
recognized by the PasswordCenter. You can use the wildcard * for changing
contents.
User name: Enter your user name
for the target program here if your target program requires it, otherwise
leave this field empty.
Password: Enter your current password
for the password dialog into this field.
Input sequence: Enter the input
sequence, with which you fill in the login dialog of the target program,
into this field. (For a detailed description see section
Input
sequences).
Finish with RETURN: If you enable
this option ()
the input sequence will be automatically concluded with a RETURN action
(recommended or necessary for practically all applications).
If the "Repeat autocheck" check
box in the dialog options is enabled, the PasswordCenter can automatically
detect the multiple start of a sign-on/login dialog within an activated
target program and will only become active for the first start.
New or modified data must be added to the
PasswordCenter's password management using the "Apply" button. If you do
not want to accept the entries or changes, press "Cancel" instead.
Input Sequences
In order for the PasswordCenter to correctly
sign you on for a registered program, you must input the sequence you use
to enter your password in the relevant box of a sign-on/login dialog mask
and, if required, your user name in the same mask. Key combinations are
used for the input sequence.
Important:
The PasswordCenter does not know without saying, which dialog mask is to
be filled with which information. In fact, it orientates itself by the
present position of the cursor. While a user changes the position of a
cursor by taking the mouse, the PasswordCenter is only able to emulate
key strokes, for example TABs (keyboard symbol " |<=>|
").
It is strongly recommended, to try out to fill in the password dialog without
PasswordCenter and without mouse, by using only TAB strokes for maneuvering
the cursor. Please remember the number of TAB strokes because this is used
for registration!
Note: In many applications, it is
not necessary to enter a user name in a dialog mask.
Hotkey combinations:
The key combination Ctrl+U transfers
the contents of the "User Name" box to the "User Name" field in the sign-on/login
box, provided that the cursor is just located
there. The combination is entered in the form of /uid
in the input sequence box. The combination is not required if the target
dialog does not require a user name.
You can move to the next box by pressing
the Tab key. Pressing the Tab key repeatedly enables you
to skip boxes or selection options. /tab is entered in the input
sequence box..
The key combination Ctrl+P transfers
the contents of the password box to the "Password" field in the sign-on/login
box, provided that the cursor is just located
there. This combination is entered in the form of /pwd
in the input sequence box.
Pressing the Pause key generates
the input type /dly in the input sequence box and causes a delay
of 100 ms. This input may be used if a delay is required during input in
the sign-on/login dialog. Pause can be multiply entered.
By pressing the Return key, the
entry /ret is created in the "Input sequence" field and adds a Return.
Tip: Before entering the input sequence
in the Dialog Registration mask, please take a look at the following examples
and carry out the individual steps for signing on again without the PasswordCenter.
Try to sign on using the keyboard only and note the inputs you require.
The input sequence must match your inputs..
Examples for Input Sequences:
Password dialog requires password only:
This dialog requires only a password.
The following input sequence is needed
in this case: Ctrl+P.
The following entry is displayed in the
input sequence field: /pwd
In most cases the "Finish with RETURN"
option must also be enabled.
Password dialog requires user ID and
password:
This dialog requires a user name. After
input of a user name, the user must change to the "Password" box and input
the corresponding password.
The following input sequence is needed
in this case: Ctrl+U, Tab, Ctrl+P.
The following entries are displayed in
the input sequence field: /uid/tab/pwd
In most cases the "Finish with RETURN"
option must also be enabled.
Enabling
and Disabling the PasswordCenter Functionality
The functionality for displaying the PasswordCenter
for registered password dialogs can be disabled or re-enabled. Click with
the right mouse button on the PasswordCenter icon on the task bar and select
the entry "Disable PasswordCenter" or "Enable PasswordCenter".
Close
the PasswordCenter
To close PasswordCenter please click with
the right mouse button on the PasswordCenter icon
in the task bar. Then the entry "Close PasswordCenter" must be selected.
You will be asked if you really want to
close PasswordCenter . To exit PasswordCenter you must answer this question
with "Yes".
FAQ
In certain Internet
applications, the fingerprint recognition dialog appears even after successfully
completing the sign-on process for the application.
This may occur if the title and URL in an
Internet application are identical. To prevent the fingerprint recognition
dialog from opening each time, disable the "Repeat autocheck" option or
disable the PasswordCenter after successfully signing onto the application.
If you use the latter variant, you must reactivate the PasswordCenter when
you close the application.
Each time an Access
window is activated, the fingerprint recognition dialog opens.
The same solution as for the previous problem
applies here, too. Yet another variant is to maximize the sign-on/login
window if possible. This has the effect that the fingerprint recognition
dialog then only appears when signing on for the corresponding Access database.
A message is displayed
stating that pwm.exe has caused a fault and that the application is therefore
being closed.
This message may appear if the user does not
have the appropriate access rights in the system. The problem can only
be avoided by having the system administrator assign the relevant rights
to the user. Please contact your system administrator regarding your access
rights.
The password and/or
user name are not transferred to an Internet application at the correct
point since the setup of the sign-on/login dialog for the Internet application
takes a long time.
The transfer of a password and/or user name
can be delayed until the corresponding dialog has been fully set up by
integrating a delay into the input sequence for the relevant registered
dialog. A delay is inserted by pressing the Pause key before the key combination
for the password and/or user name. For further information, refer to the
Input
Sequences section of this Quick Guide. |
