Views:
Smart card authentication requires both a PIN and a physical token to confirm the user identity. Smart card certificates are associated with the user account and the user's assigned group. Once registered, the user can use smart card authentication from any Endpoint Encryption device in that group. Users are free to use any Endpoint Encryption device in their group and do not need to ask for another one-time password.
To use smart card authentication, make sure that the following requirements are met:
  • The smart card reader is connected to the endpoint and the smart card is inserted into the smart card reader.
  • ActivClient 6.2 with all service packs and updates installed.
    Note
    Note
    ActivClient 7.0 and later is not supported.
  • Specify the smart card PIN in the password field.
    WARNING
    WARNING
    Failure to provide a correct password sends a password error and may result in locking the smart card.
Note
Note
  • Smart card authentication is only configurable with PolicyServer MMC.
  • Switching the authentication method from smart card to domain authentication may cause issues for domain users added through ADSync or Active Directory User Import. To resolve this issue, remove the domain user account from the enterprise, and then restart the PolicyServer services to start synchronization with the AD server. The synchronization process adds the user back with domain authentication as the authentication method. Alternatively, you can also add the domain user account back via Active Directory User Import.
Related information
Keywords: smart cards,smart card