Home | Site map | Contact us | Help |

Secure Transfer

• Home
• What is PKI
• FAQ's
• Apply for Certificates
• S8 Online
• Prerequisites
• Generate S8 File
• Login to S8 Online
• Upload S8 Data
• Secure Email
• Hardware/Software
• Configure MSOutlook
• Reference Websites

Change Private Key PIC (Password)

The original PIC (password) supplied by HeSA and associated with your location private signing key used for S8 Online can be difficult to remember. This guideline details how to change the PIC (password).

The steps involved in this process are:

Prerequisite for Windows XP computers
Step 1: Import private signing key into Microsoft cryptostore
Step 2: Export signing key and change PIC (password)
Step 3: Import signing key with the new password into S8 Online.

See Also:
Managing old and new Certificates

Prerequisite for Windows XP computers

If you are using Windows XP you need to be able to view file extensions to ensure your private key files have the correct extension.

1. From Windows Explorer, select Folder Options from the Tools menu.

2. Select the View tab.

3. In the Files and Folders section, ensure the Hide extensions for known file types is NOT selected.

4. Select OK to close the Folder Options window.

Step 1: Import private signing key into Microsoft cryptostore

Use Windows Explorer to view the contents of the floppy disk provided from HeSA.
This floppy disk contains your HIC/HeSA PKI location keys and certificates.

1. Double click on the file fac_sign.p12 (private signing key) that is supplied by HeSA.
2. The Certificate Import Wizard window opens.
3. Select Next.
4. Ensure the fac_sign.p12 file is shown in the File name field. If not, select the Browse button and select the file from the floppy disk.
5. Select Next.
6. In the Password window, enter your HIC supplied Password (PIC) for the certificate.
7. Select the Mark this key as exportable option.
8. Select Next.
9. In the Certificate Store window, select the Automatically select the certificate store based on the type of certificate option.
10. Select Next.
11. Select Finish.
12. Select OK.

Step 2: Export signing key and change PIC (password)

Use Internet Explorer to export the private signing certificate and change its password.

1. Open Internet Explorer and from the Tools menu select Internet Options.
2. To view all imported certificates, select the Content tab and click on the Certificates button.
3. From the Personal tab, select your private signing certificate and click on the Export button.
4. The Certificate Export Wizard window opens.
5. Select Next.
6. Select the Yes, export the private key option and click on Next.
7. Select the Include all certificates in the certification path if possible and Enable strong protection options
8. Select Next.
9. Enter and confirm your new Password.
10. Select Next.
11. Select the Browse button and navigate to the location where you want to store the file.
    Note: It is recommended that you save the file to a new floppy disk or CD. Do not store the exported file on your original HIC floppy.
12. Ensure the filename is named fac_sign.p12
    Note: Double check that the file extension is .p12. (In some systems, (notably Windows XP) the default is .pfx and if accepted will cause failure. If you are using Windows XP, check that you can view file extensions by following the Prerequisite guideline.)
13. Select Next.
14. Select Finish.
15. Select OK.

Step 3: Import signing key with the new password into S8 Online.

1. From you browser, enter the URL for S8 Online (https://s8online.health.qld.gov.au).
2. The S8 Online Application opens.
3. Select the Keys Certificates tab.
4. Select the Import Pharmacy Keys and Certificates button.
5. An information window opens.
6. Select OK.
7. The Open window displays.
8. Insert the new floppy disk (or CD) and navigate to the location where you exported your new private signing key (fac_sign.p12).
   Note: Check again that the file is named fac_sign.p12, (with the .p12 extension).
9. Select the fac_sign.p12 file and click on Open.
10. The Keys/Certificates Password window opens.
11. Enter your new PIC (password) and click on OK.
    The Keys and Certificates are imported. (This takes approx. 15-20 seconds.)
12. The Key Import Success window displays.

Managing old and new Certificates

When you change your HeSA supplied PIC (password), it is important that you do not mix your old and new signing keys (Certificates) and their respective PIC's (passwords). To safeguard against this occurring, the following steps are recommended:

Original certificates

• Write protect the HeSA floppy disk containing the original Certificates.
• When changing the password, do NOT export the new private key to the HeSA floppy.
• Clearly label the original HeSA floppy disk and store in a secure location.

New certificates

• Write protect your new floppy disk (or CD) containing the new Certificates.
• Clearly label the new floppy disk (or CD) and store in a secure location.

 

Printed copies are uncontrolled

---

This page last updated: 16 August  2004
Review date: 01 February 2005
Document No.: SOD008-0