In order for a CryptoToken to activate in SignServer it requires the ability to see a default key in the CryptoToken. Perform the steps below to create a test key that SignServer can use to activate the Crypto Token.
To create a first test key for SignServer:
- Click Keys in the Azure Key Vault created to be used with SignServer, in this example SignServerKeyVault (created in the Creating an Azure Key Vault step).
![](/signserver-cloud/files/105363/105366/1/1700063776854/image2020-4-27_13-16-41.png)
- Click Generate/Import.
- Specify the following and then click Create:
- The default key Name defined in the CryptoToken of SignServer will be "testkey0" but any key name can be used.
- Select RSA for the KeyType
- Select 2048 for the RSA Key Size.
![](/signserver-cloud/files/105363/105365/1/1700063776754/image2020-4-27_13-18-30.png)
- The key is created and displayed in the list.
![](/signserver-cloud/files/105363/105364/1/1700063776658/image2020-4-27_13-19-29.png)
Next, continue to Creating an Azure Key Vault Crypto Token in SignServer for instructions on configuring an Azure Key Vault Crypto Token.