A smartcard is a cryptographic device, an HSM of sorts, that is programmable and may be used for identification, authentication, private key storage, digital signatures, and other security functions.
Questions tagged [smartcard]
62 questions
12
votes
3 answers
Open source system for swipe card access?
We're looking at replacing our campus-wide magnetic swipe card system with something more robust. The "programmer" side of me says there's got to be an open-source, scalable solution that already does this, but all I've been able to find are…
Moduspwnens
- 747
- 1
- 7
- 17
10
votes
2 answers
Smart card authentication to a Cisco switch?
We have our Cisco network devices configured to authenticate network administrators using their domain accounts via RADIUS running on a Windows 2008R2 server with the network protection role. This works great for logging into the switch via SSH…
murisonc
- 2,968
- 2
- 20
- 30
6
votes
1 answer
Joining AD domain with Windows 10 using smart card
My Windows "domain-centric" company has abruptly decided to make the switch from Windows 7 to Windows 10, and it has become my job to make their prepared image join our domain with our smart card/token based authentication system. This was an issue…
Y. Park
- 61
- 1
- 4
6
votes
3 answers
Slow logon via Remote Desktop to Server 2012 and Smart Card service errors
When I logon my Server 2012 R2 server via Remote Desktop it sits at the logon screen for 10-20 seconds before logging me in. Once logged in I find the following three errors in the Windows System Event log, all logged as Event ID 7011 with the…
I say Reinstate Monica
- 3,100
- 7
- 23
- 51
5
votes
0 answers
Smart card error from Remote Desktop app
On Windows 10 there are two apps to remotely connect to another computer. One is old Remote Desktop Connection (mstsc.exe) and the other is modern Remote Desktop (RdClient.Windows.exe hidden somewhere in C:\Program Files\WindowsApps). I have my own…
Dialecticus
- 151
- 3
5
votes
1 answer
Windows server 2012 R2 - delay before certificates start working
I have this weird unexplained delay before the certificates i put in my servers start actually working
it goes something like this:
I add the certificates snap-in to mmc to manage the computer account certificates
I then add some certificates to the…
amit
5
votes
1 answer
How do I configure AD CS to support Name Constraints (4.2.1.11 in RFC 2459)?
I am trying to figure out how to do Qualified Subordination with the critical extension set, but I'm unable to figure out how to do this in MSFT AD CS.
For a given certificate, how do I make sure that the name constraints are set appropriately on…
makerofthings7
- 8,821
- 28
- 115
- 196
4
votes
0 answers
Why does RDS login screen vary by user and PC?
I have two identical Lenovo laptops running Windows 10 with all updates. Call them Left and Right. On the backend I have a domain controller and a Remote Desktop Server, both running Windows Server 2008R2. I have two users, Bob and Alice, who log…
Russ Kuhn
- 41
- 3
4
votes
1 answer
How can I tell which users credentials are cached on a local system?
I'm troubleshooting cached credentials on Windows 7, specifically Smart Card logins, and I would like to know how I can find out which users currently have their credentials cached on the machine.
I have read How are cached Windows credentials…
MathewC
- 6,877
- 9
- 38
- 53
4
votes
1 answer
Smart Card S/MIME with Exchange 2013
I have an Exchange 2013 environment that I'm trying to implement S/MIME with smart cards. To the best of my knowledge, and the little help I have received on TechNet, I have configured my Exchange server correctly. I have installed the S/MIME…
wolfenstein87
- 41
- 2
4
votes
1 answer
Smart card / auditable access for rack KVM tray
Is there such a thing as a KVM Tray for a standard 19" rack whose use can be validated by a smartcard (or some other auditable authentication method)?
It looks like we have a security requirement where just because users have a key to the rack…
Mark Henderson
- 68,316
- 31
- 175
- 255
3
votes
1 answer
Smart Card removal behavior and card renewal
My customer is planning to introduce new Policy regarding smart card removal in their Windows Environment, most probably session break since it's a Citrix environment. Microsoft documentation on the policy
I've provided them with a third party PKI…
nethero
- 238
- 1
- 9
3
votes
1 answer
Encrypt/Decrypt filesystem container file with smartcard on linux
I want to encrypt and decrypt a file system container file with luks and a smartcard on debian linux.
The smartcard is a Nitrokey Start which is basically a compact smartcard in a usb reader.
I know how to create and mount a container file with dd,…
soulflyman
- 131
- 5
3
votes
2 answers
Is it possible to fix "Logon User Interface DLL acmsgina.dll failed to load"?
Here is the scenario: installing an update to ActivCard (6.1) to a Windows XP laptop. After the required reboot, Windows XP brings up the default blue background, waits for quite a long time and then brings up the following dialog:
User Interface…
Bob Cross
- 237
- 1
- 4
- 14
3
votes
2 answers
Smartcard Logon: The domain specified is not available. Please try again later
I'm standing up a test lab.
Using AD CS, I've deployed a smartcard logon cert to an HID Crescendo C1150. When I attempt to log on to a WIN7 workstation with the smartcard, I'm greeted with:
The system could not log you on. The domain specified is…
The_Glidd
- 31
- 1
- 1
- 2