Skip to main content
Skip table of contents

Renew virtual smart card

On a configurable interval (using batch synchronization), Identity Manager runs an expiry check to detect all virtual smart card certificates that will expire within the coming period.

Standard workflow

1Identity ManagerIdentity Manager automatically runs the Expiry check. Certificates that will expire in the coming period will be detected. Each user will receive an email with instruction for renewal.-
2Virtual smart card userLogs in to the Smart ID Self-Service. Checks the open tasks to renew virtual smart card. Clicks Start renewal.-
3Identity ManagerRemoves expired authentication and signing certificates from the card. Keeps and reuses old encryption certificates.-
4Smart ID Desktop AppStarts and activates a new smart card profile.-
5Virtual smart card userIn Smart ID Desktop App: Enters a PIN. Confirm the PIN entry.-
6Smart ID Desktop AppCreates key pairs on the trusted platform module (TPM).-
7CAIssues certificates. The certificates are stored in Identity Manager and on the TPM.-
8Virtual smart card userIn Smart ID Desktop App: Confirms the new certificates.-
9Identity ManagerIn Smart ID Self-Service: Displays the new virtual smart card in Cards tab and the new certificates in the Certificates tab.-

Technical reference

  • PcmProcRenewVirtualSmartcard


  • PcmSubProcCreationOfVSC
  • PcmProcChangeStateOfCertificatesSuperseded
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.