Initialize SafeNet eToken

Jan 20, 2026

Initialize SafeNet eToken

Get Started

• The initialization process is a requirement when:
  • Setting up the SafeNet Token for the first time. 
  • Resetting the etoken to set up a new password for locked etoken or forgotten passwords​​​​​​.

• Reinitializing your eToken will delete all certificates currently installed on the token. If you have existing certificates on the eToken, they will be removed permanently and will have to be reissued and installed again. 

• GlobalSign provides one free token to new customers and offers free replacements if the token becomes unsupported or faulty. For additional token, you can buy directly from GlobalSign or from another vendor, provided the token is compatible with GlobalSign Requirements. GlobalSign support the following token models from Thales:
  
  • Safenet eToken 5110 (For AATL Only)
  • Safenet eToken 5110+ CC (940)
  • Safenet eToken 5110+ CC (940B)
  • Safenet eToken 5110+ CC (940C)

• GlobalSign verifies token compatibility during installation. If an unsupported token is used, an error message will appear, and the certificate will not install.

• Prepare passwords for the following: 
  
  • Administrator Password. This password is used to manage the token. It can be updated, but not required.
  • Token Password. This password is required to access the token certificate store. It is recommended to be updated.
  • PUK or PIN. These passwords are not commonly used, but serves an extra layer of internal authentication method. This is required.

Prerequisites

• GlobalSign-provided USB Token. This is mailed upon ordering GlobalSign's Document, Email or Code Signing Certificate.
• Downloaded and installed SafeNet Authentication Client in your operating system. This tool is required to initialize your SafeNet USB token. 

Guidelines

1. Insert your SafeNet USB token into your computer.
2. Open the SafeNet Authentication Client Tools. 
3. Click the Gear icon on the top right for Advanced View. This will redirect you to the next window. 
   
   

4. Right-click on your token name and select Initialize Token.
   
   

5. In the Initialize Token - Initialization Options window, choose Configure all initialization settings and policies. Then, click Next to proceed.
   
   

6. In the Initialize Token - Password Settings window, create a new password for your token. Enter and confirm your new passwords. Then, click Next.
   Note: If you DO NOT want to make any changes with the current token password next time you access the token, untick the Token password must be changed on first logon box. 

   IMPORTANT: Token Password is required to access the token certificate store. It can be retrieved using the Administrator Password. Administrator Password is used to manage the token. If lost, forgotten or entered incorrectly several times, the eToken will be permanently locked. The following passwords are recommended to be kept in a secure password manager for easier tracking.

   
   

7. Click OK to acknowledge that all current token contents will be deleted. This will start the initialization process. 
   
   

   WARNING: The token must remain plugged in until the initialization process is complete. Removing the token during the operation will damage it.

8. Click OK to complete the process.
   
   

9. Your SafeNet eToken is initialized. It is now ready to have a Certificate installed.