Checking in a C2V File
The Check in C2V dialog box enables you to process and store the Sentinel security key information that is contained in a Customer-to-Vendor (C2V) file. This information can be used in connection with Protection Key Update orders. In addition, it enables you to format a key. You can also generate a file that you can send to a customer to format a key that is already deployed.
NOTE If the C2V file contains dynamic memory data, the dynamic memory file is displayed with Base64 encoding in the Content column of the Dynamic Memory tab. To view this data, use a Base64 decoder.
You can do the following in the Check In C2V dialog box:
Click... | To... |
---|---|
View Details | View the feature and memory details of a C2V file. |
Check In |
C2V file information such as C2V file name, Key ID, Batch Code, and Locking Type are checked into the Sentinel LDK-EMS database. For details, see To check in a C2V file: |
Format |
Erase all license and memory data stored in the key and reset the data for that key in the Sentinel LDK-EMS database. For details, see Formatting a Sentinel Protection Key. |
Clear Clone |
Unlock the licenses from a C2V file that was sent from a cloned machine. (Relevant only for Sentinel SL Legacy keys, Sentinel SL-AdminMode keys, and Sentinel SL-UserMode keys.) This button is enabled only if Sentinel LDK-EMS detects cloning (via a clone detection flag) based on the criteria in the clone protection scheme. You cannot check a C2V file into the Sentinel LDK-EMS database if the file was sent from a cloned machine unless the Clear Clone functionality is applied. Clear Clone functionality works only when there is no major difference between the fingerprint and the original. For more details, see Enabling Licenses That Were Disabled Due to Clone Detection and Eligible C2V for Clear Clone Operation. |
Clear Time Tamper |
Re-enable blocked applications by changing the V-Clock time. For details, see Enabling Protected Applications Blocked Due to Time Tampering. |
Enable Key |
Enable the HL or CL key that was disabled due to tampering. For details, see Enabling a Sentinel HL (Driverless Configuration) Key or CL Key That Was Disabled Due to Tampering. |
1.Select Entitlements > Check In C2V. The Check In C2V dialog box opens.
2.Click Browse and navigate to and select the C2V files you want to check in. Then click Open.
The C2V data is processed and the identification information of the keys is displayed, including the C2V file name, Key ID, Batch Code, and the locking type of the key. Also, the Check In button is enabled.
3.Select a C2V file and click Check In. Make sure to apply or remove any pending updates before checking in the C2V file. For details, see Removing/Applying Pending Updates.
Removing/Applying Pending Updates
You must remove or apply pending updates for a C2V file before you can apply new updates.
To remove or apply pending updates:
1.Select a C2V file and click Check In to display the number of pending updates.
2.Do one of the following to handle pending updates:
•To remove all pending updates, click Remove.
•To apply pending updates:
i.Click View. The Pending Updates dialog box opens.
ii.Select the update and click Generate to generate the V2C file for the pending update.
Formatting a Sentinel Protection Key
Formatting a key erases all license and memory data stored in the key and resets the data for that key in the Sentinel LDK-EMS database. You can format a key by:
>By formatting a locally connected Sentinel HL key.
>By creating an update file (V2C) for a Sentinel protection key that is already deployed in the field. The file can be sent to an end user to apply locally using the Sentinel Remote Update System (RUS).
**WARNING** Formatting a Sentinel protection key deletes all license data from the key.
When you receive a Sentinel HL key from a customer, you need to check in the information to make the data in the key available to Sentinel LDK-EMS.
To format a locally connected Sentinel HL key:
1.Click Entitlements > Check In Key.
2.Select the key and click Check In. The key is checked in and the Format button is enabled.
3.Click Format. A message appears, warning that all license data will be deleted from the key.
4.Click Yes to confirm and continue. The key is formatted and a success message is displayed.
To generate an update file (V2C) for formatting a remote Sentinel Protection Key:
1.Click Entitlements > Check In C2V.
2.Click Choose Files. The file Open dialog box appears.
3.Browse for the C2V file you wish to check-in, then click Open. The location of the C2V file is displayed and the Check In button is enabled.
4.Click Check In. The C2V file is checked in and the Format button is enabled.
5.Click Format. A message appears, warning that all Features will be deleted from the key and a Protection Key Update will be created to delete all license data from the remote key.
6.Click Yes to confirm and continue. The file download dialog box appears.
7.Save the V2C file to a convenient location. The default name for the file is displayed as FormatKey_[unique ID of key].v2c.
8.To complete the format operation, apply the file generated in the previous step. For details, see To apply a Format V2C file to a Sentinel Protection Key at the end-user site:. If the file is not applied, Sentinel LDK-EMS will not allow you to apply any subsequent updates to the protection key.
If you are unable to access the file for any reason and want to apply subsequent key updates, then check in the latest C2V for the protection key before proceeding further. For details, see To apply license updates by regenerating Format V2C:.
To apply a Format V2C file to a Sentinel Protection Key at the end-user site:
1.Navigate to and select the location where your RUS utility is stored.
2.Double-click rus.exe.
3.Click the Apply License Update tab. (This might be the only tab displayed.)
4.Click Browse and navigate to the V2C file containing the license update that you received.
5.Select the file and click Open. The file name and path is displayed in the Update File field.
6.Click Apply Update to apply the new license data to your Sentinel Protection key.
To apply license updates by regenerating Format V2C:
If you are unable to access the previously generated Format V2C file (for any reason), then you need to re-generate the file. This is done by checking in the latest C2V for the key. If the Format V2C file is not applied, then subsequent updates to the protection key cannot be applied.
1.Apply the Format V2C file. For details, see Applying the Format V2C file.
2.Save the file.
3.Click Format. The file is re-generated.
4.Click Remove. The pending updates are deleted.
5.Check in the C2V received from the end user. Now, you can create and apply protection key updates.
Enabling Licenses That Were Disabled Due to Clone Detection
If the licenses for one or more applications that are locked to a Sentinel SL Legacy key, a Sentinel SL-AdminMode key, or a Sentinel SL-UserModekey are running on a cloned machine, those applications are disabled until the disabled licenses are cleared from the Sentinel SL key and new licenses are applied.
To clear the disabled licenses, you can use the Clear Clone functionality during the Check in C2V process to generate a special V2C file.
NOTE Clearing a Sentinel SL Legacy key does not format the key.
To create a V2C file to clear a Sentinel SL key that was disabled due to clone detection:
1.Select Entitlements > Check In C2V. The Check In C2V dialog box opens.
2.Click Browse and open the C2V file.
3.In the Check In C2V dialog box, select the C2V file and click Check In. If the C2V file was sent from a cloned machine, the Clear Clone button becomes active.
You can view the details of the C2V file by clicking View Details.
4.Click Clear Clone. The V2C file is generated.
NOTE You can generate a V2C file only if the C2V is eligible for the Clear Clone operation. To learn more about C2V eligibility for the clear clone operation, see Eligible C2V for Clear Clone Operation. If you receive an error message, you will not be able to generate the V2C file. For details, see V2C Generation for Ineligible C2V.
5.Save the V2C file.
Synchronizing Protection Key with the Database
When the license information stored on the Sentinel protection key is updated outside of Sentinel LDK-EMS, the Synchronize button is displayed when checking in the C2V file.
In this scenario, Sentinel LDK-EMS is not aware of the changes made to the key, however, it can identify that the information stored on the C2V file is different from the current state of the database. Therefore, it prompts the user to synchronize the Sentinel LDK-EMS database with updated license information on the C2V. Once the synchronization operation is performed, you will be able to check in the C2V file.
To synchronize the Sentinel LDK-EMS database with the check in C2V:
1.Click the Browse button and select the updated C2V file. You must select the C2V file that was updated outside of Sentinel LDK-EMS.
2.Click the Check In button. The Synchronize button appears and a message is displayed: 'Key information not synchronized with database'.
3.Click the Synchronize button. The Sentinel LDK-EMS database is updated and synchronized, and a success message is displayed. If you now try to check in the updated C2V file, the message displayed after Step 2 (see above) does not appear and the file is successfully checked in.
Eligible C2V for Clear Clone Operation
For a C2V file to be considered eligible for the clear clone operation, at least one of the criteria in the clone protection scheme must match in both the reference and system fingerprints. If there is no match, an error message is displayed and the V2C file cannot be generated.
>For a Product license that uses any of the standard Sentinel LDK-EMS clone protection schemes, the following eligibility criteria is used to determine if the C2V is eligible for the clear clone operation.
Operating System | Physical Machine | Virtual Machine |
---|---|---|
Windows |
Hard Disk UID or Motherboard UID or Secure Storage UID |
Ethernet UID or CPU or Motherboard UID or Secure Storage UID |
Linux |
Hard Disk UID or Motherboard UID or Secure Storage UID |
Ethernet UID or CPU or Motherboard UID or Secure Storage UID |
Macintosh (Mac) |
Hard Disk UID or Motherboard UID or Secure Storage UID |
Ethernet UID or CPU or Motherboard UID or Secure Storage UID |
Android |
CPU UID or Hard Disk UID or Android Serial Number or Secure Storage UID and Android First Boot |
Not Applicable |
>For a Product license that uses a custom clone protection scheme, at least one of the selected clone protection criteria must match in both the reference and system fingerprints.
V2C Generation for Ineligible C2V
After clicking the Clear Clone button, if you get an error message, it means that your C2V has failed to meet the minimum eligibility criteria for using the Clear Clone functionality. If you still want to allow a V2C file to be generated, you must do one of the following:
To generate a V2C file for an ineligible C2V—Method 1:
1.The end user must:
a.Delete all V2C files on the machine.
b.Restart the License Manager service (LMS).
c.Using the RUS tool, generate the machine fingerprint.
d.Send the Fingerprint (C2V) to the vendor.
2.The vendor must:
a.Use the C2V to generate the license (V2C file).
b.Pass the license (V2C file) to the end user.
To generate a V2C file for an ineligible C2V—Method 2:
1.The end user must:
a.Delete all the V2C files on the machine.
b.Restart the License Manager service (LMS).
2.The ISV must:
a.Use the cloned C2V to generate a new license (V2C file) using the Add Products from State option.
b.Pass the license (V2C file) to the end user.
Enabling a Sentinel HL (Driverless Configuration) Key or CL Key That Was Disabled Due to Tampering
A Sentinel HL (Driverless configuration) key or CL key can become disabled if the system detects that someone has tried to tamper with it. You can enable the key so that you can use it again by following the steps below.
To enable a disabled key:
1.Navigate to Entitlements > Check in C2V.
2.Click Browse.
3.Select the C2V file for the disabled key. You must provide the current state of the disabled key.
4.Click Open.
5.Click Enable Key.
6.Save the downloaded .v2cp file on the user's machine. If there are any pending updates for the key, they are bundled together in the .v2cp file.
7.Apply the .v2cp file on the user's machine using the relevant RTE version:
•Sentinel HL (Driverless configuration) keys: 7.63 or later
•CL keys: 8.51 or later
Limitations
>If Sentinel LDK-EMS has no information about a disabled key (for example, the key was never used in Sentinel LDK-EMS or the C2V file was never checked in) and you try to enable the key, then the operation cannot be completed. The system throws an error asking the user to re-enable the key using the license management system that was used to update the key.
>If changes are made to the key outside of Sentinel LDK-EMS (for example, via the Sentinel License Generation API or another Sentinel LDK-EMS instance), then the disabled key cannot be re-enabled using the Sentinel LDK-EMS GUI. If you try to re-enable it, the system will throw an error asking the user to re-enable the key using the license management system that was used to update the key.