Installing CAPICOM on a Microsoft Windows system

Note: You do not need to install CAPICOM if you install the PKI Services ActiveX program. For information on how to do this, see Installing the PKI Services ActiveX program.

CAPICOM is an ActiveX control created by Microsoft that provides access to cryptographic functions. It can be used to digitally sign data, verify digital signature and digital certificates, add certificates to the certificate stores, and encrypt or decrypt data. CAPICOM provides functions required for z/OS® PKI Services certificate renewal through Internet Explorer browsers.

Microsoft provides two methods for installing CAPICOM:

CAPICOM is available as part of the Microsoft Platform Software Development Kit (SDK). If you choose this method to install CAPICOM, you have two options:
- Install the full Microsoft Platform SDK (not available for Windows 7). Doing this causes more software than required by z/OS PKI Services to be installed on the Microsoft Windows system.
- Install the CAPICOM subset of the Microsoft Platform SDK. This approach installs CAPICOM as well as software development samples on the Microsoft Windows system.
CAPICOM is available as a security patch from Microsoft. Installing the patch causes the least amount of software installation for z/OS PKI Services.

Either method for installing CAPICOM requires verification of the Microsoft Windows operating system through Windows Genuine Advantage. When attempting to download the desired version of CAPICOM, the Microsoft Web site might present you with a page requesting you to verify the operating system. Click Continue, and allow the browser to activate any necessary ActiveX controls to perform the verification.