Pin code is rutoken s by default. Token PIN: password with special rules
Smart cards Rutoken and Rutoken Light are used as carriers of key information. Detailed information about these media can be found on the website of the Aktiv company, a developer of Russian authentication tools.
Rutoken Rutoken Light
Standard pin codes
12345678 - custom PIN code for Rutoken and Rutoken Light, set by the manufacturer.
When a window appears asking you to enter a PIN code, you must enter the value 12345678.
For the Rutoken carrier, if the standard PIN code (12345678) was independently changed using the “Rutoken Control Panel”, then in this window you should indicate the new PIN code assigned during the change. Information about the new PIN code is stored only by the subscriber and is not known to the special communications operator.
How to unlock Rutoken PIN code?
The PIN code is blocked after 10 incorrect entry attempts.
You can unlock Rutoken or Rutoken Light in 2 ways:
How to unlock PIN code via Rutoken control panel
1. Open the “Start” menu > “Control Panel” > “ Rutoken control panel" Go to the “Administration” tab and click on the “Enter PIN code” button, select the item “Administrator”, enter the standard PIN od - 87654321, click OK.
2. After entering the administrator PIN, the “Unblock” button will become available, you need to click on it, a message will appear about successful unlocking.
How to unlock a pin code viaCrypto Pro CSP
1. Open the Start menu > Control Panel > Crypto Pro CSP. Go to the “Hardware” tab and click on the “Configure media types” button.
2. Select Rutoken or Rutoken Lite and click on the “Properties” button. If such media are not in the list, you should update the support module. To do this, it is recommended to use the Diagnostics service.
3. Go to the “Information” tab and click the “Unblock PIN” button. If the Information tab is missing, you should update the support module. To do this, it is recommended to use the Diagnostics service.
The Unblock PIN button will be grayed out if the smart card is not locked. In this case, information about the remaining number of attempts to enter the PIN code will be displayed.
4. A message indicating successful unlocking will appear.
It is impossible to unlock the admin pin code without losing data.
The JaCarta token may be blocked, the error may be CKR_PIN_LOCKED, if you enter the wrong PIN code several times in a row, this can happen even if you did not enter it, because the program in which you process documents remembers the entered PIN code and accesses the key every time.
The default pin code on the new Jakarta carrier is:
- User PIN code (without spaces): 0987654321
- Administrator PIN (without spaces): 1234567890
- Open the management program: JaCarta Unified Client
- Open the GOST tab
- Then select Unblock user PIN
4. A warning will appear stating that this unlock only resets the error counter. If you changed the standard PIN code and forgot it, then only generating a new qualified electronic signature (CES) at the Certification Center will help in your case. 
5. In the window that opens, enter the administrator PIN code 1234567890 in the field. Click Run
6.If everything is done correctly, a window will appear with the message Unlocking completed successfully.
7. Close the program. Now you can try to enter your PIN code again. The standard user PIN code is 0987654321. If you have changed the standard PIN code and do not remember it, then you will have to generate a new qualified electronic signature (CES).
We worked for a year. Alcohol was accepted, sales were sent out. And here is UTM stops send requests and receive documents. Speaks: expiration date has expired PKI-certificate.
Unlike a GOST certificate, which costs money, PKI is obtained for free and its duration smooth1
calendar year.
It's easy to get a new certificate! Just follow our instructions.
1. Look for the JaCarta single client icon near the clock and double-click to open it.
2. Open the "PKI" tab. Select the certificate and open it for viewing. If there is no certificate, then we go straight to .
3. Look at the expiration date of the certificate. And, if it is close to the current one, then we move on to .
4. Launch the Internet Explorer browser. You can find it by clicking on the "Start" button.
6. Select the item “Read the conditions and check their compliance.” Next, go to “Start scanning”.
7. If the verification was successful, then enter the PIN code of the hardware key (GOST): 0987654321 and click "Show certificates".
8. Select the certificate that appears.
10. We are looking for our own separate unit (at the checkpoint). Click "Generate key".
11. Check the address: "Show address" button.
12. If everything right, then enter the PIN (RSA): 11111111 and click "Generate key".
13. Repeat entering the PIN code: 11111111
14. If everything went well, then when viewing the certificate parameters....
15. ... we will see updated data.
Good luck.
Your carrier JaCarta could be blocked if the wrong PIN was entered several times.
To unlock JaCarta follow these instructions:
1. Insert media Jacarta into your computer and run Single JaCarta Client. To do this, click Start → All Programs → Unified JaCarta Client.
2. In the program window that opens, click the button in the lower left corner Switch to administration mode.
3. Go to the desired tab, PKI or GOST respectively: 
4. Click the button Unblock user PIN.png)
5.In the window that opens, specify Administrator password.
Default administrator password:
For the PKI part:
Administrator 00000000;
For GOST parts:
Administrator 1234567890;
.png)
Attention! Under no circumstances should you be blocked as an administrator. In this case, the device will be completely blocked without the possibility of restoring the key! If you do not know the password, contact technical support for advice.
6. If the PIN code was entered correctly, a window will appear with the message Unlocking completed successfully. .png)
Jacarta has been successfully unlocked.
Tokens, electronic keys for accessing important information, are becoming increasingly popular in Russia. A token is now not only a means of authentication in a computer operating system, but also a convenient device for storing and presenting personal information: encryption keys, certificates, licenses, identifications. Tokens are more reliable than the standard “login/password” pair due to the two-factor identification mechanism: that is, the user must not only have a storage medium (the token itself), but also know the PIN code.
There are three main form factors in which tokens are issued: USB token, smart card and key fob. PIN code protection is most often found in USB tokens, although recent models of USB tokens are available with the ability to install an RFID tag and with an LCD display for generating one-time passwords.
Let's take a closer look at the principles of operation of tokens with a PIN code. A PIN code is a specially defined password that splits the authentication procedure into two stages: attaching a token to the computer and entering the PIN code itself.
The most popular token models on the modern Russian electronic market are Rutoken, eToken from the Aladdin company, and an electronic key from the Aktiv company. Let's look at the most frequently asked questions regarding PIN codes for tokens using the example of tokens from these manufacturers.
1. What is the default PIN?
The table below provides information about the default PIN codes for Rutoken and eToken tokens. The default password is different for different owner levels.
| Owner | User | Administrator |
| Rutoken | 12345678 | 87654321 |
| eToken |
1234567890 | By default, no administrator password is set. Can be installed via the control panel only for eToken PRO, eToken NG-FLASH, eToken NG-OTP models. |
| JaCarta PKI | 11111111 | 00000000 |
| JaCarta GOST | Not specified | 1234567890 |
| JaCarta PKI/GOST |
For PKI functionality: 11111111
When using JaCarta PKI with the "Backward Compatibility" option - PIN code - 1234567890 For GOST functionality: No PIN has been set |
For PKI functionality: 00000000
When using JaCarta PKI with the "Backward Compatibility" option - no PIN is set For GOST functionality: 1234567890 |
| JaCarta PKI/GOST/SE |
For PKI functionality: 11111111
For GOST functionality: 0987654321 |
For PKI functionality: 00000000
For GOST functionality: 1234567890 |
| JaCarta PKI/BIO | 11111111 | 00000000 |
| JaCarta PKI/Flash | 11111111 | 00000000 |
| ESMART Token | 12345678 | 12345678 |
| IDPrime card | 0000 | 48 zeros |
| JaCarta PRO/JaCarta LT | 1234567890 | 1234567890 |
2. Do I need to change the default PIN? If yes, then at what point in working with the token?
3. What should I do if the PIN codes on the token are unknown and the default PIN code has already been reset?
The only way out is to completely clear (format) the token.
4. What should I do if the user's PIN is blocked?
You can unlock the user's PIN through the token control panel. To perform this operation, you must know the administrator PIN.
5. What should I do if the administrator PIN is blocked?
The administrator PIN cannot be unlocked. The only way out is to completely clear (format) the token.
6. What security measures have manufacturers taken to reduce the risk of password guessing?
The main points of the security policy for PIN codes of USB tokens of the Aladdin and Aktiv companies are presented in the table below. After analyzing the table data, we can conclude that eToken will presumably have a more secure PIN code. Rutoken, although it allows you to set a password of just one character, which is unsafe, in other respects it is not inferior to the product of the Aladdin company.
| Parameter | eToken | Rutoken |
| Minimum PIN length | 4 | 1 |
|
PIN code composition |
Letters, numbers, special characters | Numbers, letters of the Latin alphabet |
| Greater than or equal to 7 | Up to 16 | |
|
Administering PIN Security |
Eat | Eat |
| Eat | Eat |
The importance of keeping the PIN code secret is known to all those who use tokens for personal purposes, store their electronic signature on it, and trust the electronic key with information of not only a personal nature, but also the details of their business projects. Tokens of the companies “Aladdin” and “Active” have pre-installed security properties and, together with a certain amount of caution that will be exercised by the user, reduce the risk of password guessing to a minimum.
Software products Rutoken and eToken are presented in various configurations and form factors. The offered assortment will allow you to choose exactly the token model that best meets your requirements, be it
It might be useful to read:
- How to blacklist a person on VKontakte and remove him from the blacklist?;
- Standard load test;
- Convert PNG images to ICO Convert image to ico;
- How to convert an Excel document to PDF and vice versa - ways, why you need it From xlsx to pdf online;
- The most useful Windows keyboard shortcuts (hot keys) Windows 7 keyboard shortcuts;
- TeamViewer - PC control via the Internet;
- How to open a profile in Odnoklassniki;
- How to unfreeze a VKontakte page without outside help, in a couple of minutes;