http://developers.de/blogs/damir_dobric/archive/2007/06/19/keyset-not-found-error.aspxBy using of CardSpace in the Web application scenario, the ASP.NET application is required to decrypt the stream sent by browser. In other words, when the user is required to select the card, the card information is encrypted (with server&#39;s publicenCommunityServer 2008 SP1 (Build: 30619.63)http://developers.de/blogs/damir_dobric/archive/2007/06/19/keyset-not-found-error.aspx#11657Fri, 30 Apr 2010 14:16:23 GMT7e491611-45ad-4dae-a68f-c4cb64439510:11657SomeOCSGuy<p>You are my personal hero. &nbsp;I was getting a &quot;keyset does not exist&quot; error while trying to start services for an OCS Access Edge server. &nbsp;I knew the problem was related to permissions on certificates as it worked when I added the service account to the local Administrators but I shouldn&#39;t need to do that as another server worked without that level of access. &nbsp;After browsing several posts related to OCS to no avail, I ran across your post which obviously has nothing to do with OCS but the same resolution corrected my problem as when I exported the cert from the first server and imported to the second, the permissions on it became all jacked up. &nbsp;I just couldn&#39;t figure out where to manage the permissions on certs. &nbsp;it was a real &quot;duh&quot; moment for me. &nbsp;Did I mention how much I hate certificates?? &nbsp;Haha. &nbsp;Thanks dude!</p> <div style="clear:both;"></div><img src="http://developers.de/aggbug.aspx?PostID=11657" width="1" height="1">http://developers.de/blogs/damir_dobric/archive/2007/06/19/keyset-not-found-error.aspx#1417Sat, 30 Jun 2007 21:03:16 GMT7e491611-45ad-4dae-a68f-c4cb64439510:1417Kim Cameron’s Identity Weblog » Including the whole spectrum of use cases<p>Pingback from &nbsp;Kim Cameron&amp;#8217;s Identity Weblog &amp;raquo; Including the whole spectrum of use cases</p> <img src="http://developers.de/aggbug.aspx?PostID=1417" width="1" height="1">http://developers.de/blogs/damir_dobric/archive/2007/06/19/keyset-not-found-error.aspx#1407Thu, 28 Jun 2007 01:00:25 GMT7e491611-45ad-4dae-a68f-c4cb64439510:1407Mostly Mr SQL » Blog Archive » GRRRR! Cardspace. What useless steaming pile...<p>Pingback from &nbsp;Mostly Mr SQL &nbsp;&amp;raquo; Blog Archive &nbsp; &amp;raquo; GRRRR! Cardspace. What useless steaming pile...</p> <img src="http://developers.de/aggbug.aspx?PostID=1407" width="1" height="1">http://developers.de/blogs/damir_dobric/archive/2007/06/19/keyset-not-found-error.aspx#1389Tue, 19 Jun 2007 09:15:35 GMT7e491611-45ad-4dae-a68f-c4cb64439510:1389dominick<p>That's all?! Excellent.</p> <p>But be aware that your main app has now read access to the &quot;crown jewels&quot;...</p> <p>I discussed this here:</p> <p><a rel="nofollow" target="_new" href="http://www.leastprivilege.com/CardSpaceAndDecryptingTokens.aspx">www.leastprivilege.com/CardSpaceAndDecryptingTokens.aspx</a></p> <p>And have a solution for production environments here:</p> <p><a rel="nofollow" target="_new" href="http://www.leastprivilege.com/TokenDecryptionServiceForCardSpace.aspx">www.leastprivilege.com/TokenDecryptionServiceForCardSpace.aspx</a></p> <div style="clear:both;"></div><img src="http://developers.de/aggbug.aspx?PostID=1389" width="1" height="1">