1、检查用户证书,是一个中级根证书颁发的,设备导入的CA根证书是该中级根证书合成的根证书链
2、【SSL VPN设置】--【认证设置】--【证书与USB-KEY认证】--【通用USB-KEY设置】,添加了USB的硬件型号
Vid_2012&Pid_1020,这个也没问题
3、怀疑是动态库文件路径配置有问题,通过如下方式来确认key的动态库文件路径:
① 下载360任务管理器,找到读取国密证书的exe进程:
② 右键,查询加载模块
③查看该进程加载的.dll文件
④ 找到正确的动态库:按公司排序,不管微软家的,Sangfor,teamview,QQ等这些明显跟key软件无关的.dll剔除掉,剩下:
C:\WINDOWS\SYSTEM32\bjcacsp11_ft11.dl
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\Program\XTXAppCOM.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\Driver\x86\lgu3056_p1020_gm.dll
C:\Windows\System32\bjcakey_FT11.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\libscpb_yzt.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\ZLibWrap.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\DuiLib_u.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\XTXLogLib.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\MsgNoticeBusiness.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\BjcaMssp.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\SmartCTCAPIHID.dll
⑤ 将上述.dll逐条加入USB的动态库文件路径,去掉那些提示格式异常的.dll,最后确认动态库文件:
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\Driver\x86\lgu3056_p1020_gm.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\libscpb_yzt.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\ZLibWrap.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\XTXLogLib.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\MsgNoticeBusiness.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\BjcaMssp.dll
C:\Program Files (x86)\BJCAClient\CertAppEnvV2.14.3\BjcaCertAide\SmartCTCAPIHID.dl
4、将上述.dll配置到 USB-Key的动态库文件路径:
5、再次登录EC客户端,就能正常识别到key了:
建议使用Chrome浏览器访问!
