Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [smartcard]

A smartcard is a cryptographic device, an HSM of sorts, that is programmable and may be used for identification, authentication, private key storage, digital signatures, and other security functions.

66 questions
1
vote
1 answer

Smartcard Authentication on Windows Domain Controller using Yubikey for Windows Login

I have a Yubikey 5 NFC and I am trying to configure it on a test bench for windows login authentication. I cannot seem to get the certificate to enroll on the Yubikey. I have followed the Yubikey Smartcard deployment guide, but does not seem to be…
ubuntuuber
  • 113
  • 1
  • 3
1
vote
1 answer

Use Smartcard Reader on Azure Remote Desktop

What I want to achieve: Plug a Smartcard Reader on my Laptop Connect to my private Azure VPN Use Remote Desktop to access a Server using User and Password, with Intelligent Card option and USBs checked. My Smartcard Reader appears on my device so…
Carbon
  • 51
  • 10
1
vote
0 answers

How to allow a newly inserted user certificate with Apache 'SSLVerifyClient optional'?

My web users are able to optionally use a Smart Card Certificate to identify themself via Firefox to my web server running Apache httpd 2.4. For this I use SSLVerifyClient optional plus for speed SSLSessionCache and SSLSessionCacheTimeout Sometimes…
Petra Verheim
  • 21
  • 2
1
vote
1 answer

How to manage smartcards for Windows logon (inventory, certificates, expirations, etc.)?

We are implementing smartcards to comply with two-form authentication using the builtin support in Windows + AD, using YubiKeys and Gemalto .NET cards. As an admin I can issue new certificates for the users and install such certificates in the…
Ricardo C
  • 193
  • 6
1
vote
1 answer

Passwordless login: virtual smart card with no pin?

I would like to set up a domain-joined computer for passwordless login with some low-privileged domain account that is specific to that computer. I've seen some blog posts that store the username and password in a registry key, but I also thought…
0xFE
  • 201
  • 1
  • 2
  • 11
1
vote
2 answers

Connecting to Server 2012 R2 using HP ThinPro (freeRDP), but smart card is not reading correctly

In preparation to deploy our new 2012R2 RD farm, we have updated our HP thin clients to ThinPro 5.0. They connect just fine using username/password, but when I try to use a smart card, I get the message: Please use external device to unlock the…
Mighty Ferengi
  • 151
  • 1
  • 6
1
vote
1 answer

Require smart cards for connections to Windows 2012 remote access server

We have a Windows 2012 server accepting VPN connections over SSTP and authenticating them using the Network Policy Server feature on the same server. For client authentication we've set it up to require certificates, which is working well. Too well,…
Kim Johnsson
  • 13
  • 3
1
vote
0 answers

KDC Certificate error using smartcard and Remote Desktop

Our Active Directory domain recently enforced smart card logons for administrator accounts. Since this change we have been unable to access some servers (2008 R2) using Remote Desktop. When attempting to logon we get the following error…
jbru362
  • 11
  • 1
  • 2
1
vote
0 answers

Windows Server 2008 - Smart Card service is down

I'm getting this weird error when trying to work with a SmartCard on an ec2 machine running Windows Server 2008. I'm using AnywhereUSB to connect my physical smart-card reader to the remote machine. The device itself seems to be recognized fine by…
Rizon
  • 111
  • 2
1
vote
5 answers

Windows SmartCard for Shared Workstations

We have a Windows x64 workstation that controls special equipment critical to our operations. This workstation only has a set few of trained operators who "know" how to operate it. However, it runs Windows, and this has proven encouraging for…
churnd
  • 4,077
  • 5
  • 34
  • 42
1
vote
0 answers

whats the general process for using a smart card in truecrypt?

I'm a little confused with how to deploy truecrypt our environment I purchased a few smartcards (ACOS5) that are supposedly compatible with truecrypt however i'm unable to make it all work due to lack of drivers and smartcard tooling my question to…
stuck
  • 687
  • 2
  • 10
  • 23
1
vote
2 answers

Searching a smartcard that's crossplatform

I'm searching a smart card for storing (PKI) certificates. The certificates on the smart card need to be retrieved on Windows (supporting Active Directory login), Linux, and Mac OS X. I found some like the Feitian PKI smart card but from what…
Tim
  • 11
  • 1
1
vote
1 answer

Security Token for Mac/Linux/Windows, self-managed, pref. open source?

I'm looking to buy an evaluation security token (combined smart card/usb reader) for my business that works on: Windows 7 x64 OS X 10.6.x x64 Ubuntu Linux (64 or 32 bit, 10.04 or 10.10, I can bend based on possible tokens) Functionality I need…
DevelopersDevelopersDevelopers
  • 113
  • 4
1
vote
2 answers

Custom Certificate Template is listed as unavailable

I am trying to create a custom certificate template based off of the Smartcard User template with a Windows Server 2008 Enterprise subordinate CA. I am using the subordinate CA because the root CA is not on the domain. Here are my steps so far: I…
nedwards86
  • 63
  • 1
  • 1
  • 7
1
vote
0 answers

Need help figure out why I can logon to Windows with a revoked smartcard certificate

I am adding smart card login to our domain and have got almost everything working properly except that when I revoke the certificate on our Enterprise CA I can still log into computers. I have checked that I can download the CRL using the link in…
Andy Haer
  • 11
  • 1
1 2
3
4 5