0

我正在为 PDF 签名和时间戳设置工作人员。我使用从 EJBCA 生成的 PKCS #12 证书。密钥是 SHA256WithECDSA 加密是 ECDSA prime256v1。使用此属性(https://pastebin.com/bkpNBvc1)进行设置后,我得到以下结果:

20:45:45,531 INFO  [org.signserver.server.log.IWorkerLogger] (default task-1) AllVariablesLogger; CLIENT_IP: 127.0.0.1; XFORWARDEDFOR: null; XCUSTOM1: null; LOG_TIME: 1605991545531; CLIENT_AUTHORIZED: true; EXCEPTION: org.signserver.common.CryptoTokenOfflineException: Signtoken isn't active.; WORKER_AUTHTYPE: NOAUTH; WORKER_NAME: PDFSigner; KEYALIAS: signer00003; PROCESS_SUCCESS: false; WORKER_ID: 4; CRYPTOTOKEN: CryptoTokenP12PdfSigner; REQUEST_LENGTH: 252361; REQUEST_FULLURL: http://localhost/signserver/process?null; FILENAME: document.pdf; LOG_ID: a2c32acb-f5af-4b8f-9104-0ad942c379a3; REPLY_TIME:1605991545531

当我使用注册代码作为密钥库密码时,它会提供此结果。

22:34:59,578 INFO  [org.signserver.server.log.IWorkerLogger] (default task-14) AllVariablesLogger; CLIENT_IP: 127.0.0.1; XFORWARDEDFOR: null; XCUSTOM1: null; LOG_TIME: 1605998099578; CLIENT_AUTHORIZED: true; EXCEPTION: org.signserver.common.CryptoTokenOfflineException: No key available for purpose: signer00003; WORKER_AUTHTYPE: NOAUTH; WORKER_NAME: PDFSigner; KEYALIAS: signer00003; PROCESS_SUCCESS: false; WORKER_ID: 4; CRYPTOTOKEN: CryptoTokenP12PdfSigner; REQUEST_LENGTH: 252361; REQUEST_FULLURL: http://localhost/signserver/process?null; FILENAME: document.pdf; LOG_ID: 60961c2a-d005-4f19-a7bf-d74bb30c0448; REPLY_TIME:1605998099578

有什么建议么

操作系统版本:Windows Server 2016
Java:OpenJDK 8.0.242.08 Ant:ant 1.9.14
数据库:MariaDB 10.4.12
服务器:Wildfly 10.1.0
Signserver 版本:5.2.0

令牌已激活并具有自动激活功能 在此处输入图像描述

4

1 回答 1

0

由于您没有启用加密令牌的自动激活。您是否在发送签名请求之前启用了加密令牌和工作程序?

于 2020-11-24T07:14:20.187 回答