Sample code for 30+ languages & platforms
PowerShell

ScMinidriver - Import a Certificate and Private Key to a Smart Card or USB Token

See more ScMinidriver Examples

Demonstrates how to import a certificate and its private key to a key container on a smart card or USB token.

Note: This functionality was introduced in Chilkat v9.5.0.87.

Note: The ScMinidriver functionality is for Windows-only because ScMinidriver DLLs only exist on Windows.

Chilkat PowerShell Downloads

PowerShell
Add-Type -Path "C:\chilkat\ChilkatDotNet47-x64\ChilkatDotNet47.dll"

$success = $false

# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

$scmd = New-Object Chilkat.ScMinidriver

# Reader names (smart card readers or USB tokens) can be discovered
# via List Readers or Find Smart Cards
$readerName = "SCM Microsystems Inc. SCR33x USB Smart Card Reader 0"
$success = $scmd.AcquireContext($readerName)
if ($success -eq $false) {
    $($scmd.LastErrorText)
    exit
}

# If successful, the name of the currently inserted smart card is available:
$("Card name: " + $scmd.CardName)

# To import a cert + private key, we'll need to be PIN authenticated.
# For more details about smart card PIN authentication, see the Smart Card PIN Authentication Example
$pinId = "user"
$retval = $scmd.PinAuthenticate($pinId,"000000")
if ($retval -ne 0) {
    $("PIN Authentication failed.")
    $scmd.DeleteContext()
    exit
}

$cert = New-Object Chilkat.Cert

# Load the cert + private key from a .p12/.pfx
# We got this .p12 from https://badssl.com/download/
$password = "badssl.com"
$success = $cert.LoadPfxFile("qa_data/pfx/badssl.com-client.p12",$password)
if ($success -eq $false) {
    $($cert.LastErrorText)
    $scmd.DeleteContext()
    exit
}

# Let's import this certificate as the "signature" key/cert in key container #6.
$containerIndex = 6
$keySpec = "sig"
$success = $scmd.ImportCert($cert,$containerIndex,$keySpec,$pinId)
if ($success -eq $false) {
    $($scmd.LastErrorText)
}
else {
    $("Successfully imported the cert + private key onto the smart card.")
}

# When finished with operations that required authentication, you may if you wish, deauthenticate the session.
$success = $scmd.PinDeauthenticate("user")
if ($success -eq $false) {
    $($scmd.LastErrorText)
}

# Delete the context when finished with the card.
$success = $scmd.DeleteContext()
if ($success -eq $false) {
    $($scmd.LastErrorText)
}