Smart Card Login + Certificate Login to AD -> Lost smart card

Smart Card Login + Certificate Login to AD -> Lost smart card
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Smart Card Login + Certificate Login to AD -> Lost smart card JY 12-15-2005
Posted by =?Utf-8?B?Slk=?= on December 15, 2005, 10:03 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
We have AD login using smart card + certificate working fine. We also know
what needs to be done in the event the user forgets the smart card when they
come to the office (let them temporarily login using a password and disable
it the next day). However, what are people (companies who have implemented
this MS solution, including MS) doing with the user who is a traveler with a
laptop, has a good cached profile (from the last successful smart card login
from the office before disconnecting), loses the smart card and needs to
logon to the desktop at a foregin country (or anywhere where they are not
connected to the corporate network and can't due to the inability to logon to
the desktop in the first place?)?

Does anyone have a solution for this? Is there no solution?


Posted by Steven L Umbach on December 17, 2005, 3:49 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Losing their smart card is akin to forgetting their password and as long as
they can not connect to a network that allows access to a domain controller
they are out of luck. If there are easy workarounds then security would not
be adequate. If many users are loosing their smartcards then you should
find out why and how to minimize that. --- Steve


> We have AD login using smart card + certificate working fine. We also know
> what needs to be done in the event the user forgets the smart card when
> they
> come to the office (let them temporarily login using a password and
> disable
> it the next day). However, what are people (companies who have implemented
> this MS solution, including MS) doing with the user who is a traveler with
> a
> laptop, has a good cached profile (from the last successful smart card
> login
> from the office before disconnecting), loses the smart card and needs to
> logon to the desktop at a foregin country (or anywhere where they are not
> connected to the corporate network and can't due to the inability to logon
> to
> the desktop in the first place?)?
>
> Does anyone have a solution for this? Is there no solution?
>



Posted by Saleh Matani on January 5, 2006, 9:08 am
If you were  Registered and logged in, you could reply and use other advanced thread options
yes there is a 1/2 solution ,
just create a local profil for that user on notebook and user can logon
as local user and not domain user on his notebook and do everything he
needs!

Saleh Matani


JY schrieb:
> We have AD login using smart card + certificate working fine. We also know
> what needs to be done in the event the user forgets the smart card when they
> come to the office (let them temporarily login using a password and disable
> it the next day). However, what are people (companies who have implemented
> this MS solution, including MS) doing with the user who is a traveler with a
> laptop, has a good cached profile (from the last successful smart card login
> from the office before disconnecting), loses the smart card and needs to
> logon to the desktop at a foregin country (or anywhere where they are not
> connected to the corporate network and can't due to the inability to logon to
> the desktop in the first place?)?
>
> Does anyone have a solution for this? Is there no solution?
>

Similar ThreadsPosted
Smart Card Login + Certificate Login to AD -> Lost smart card December 15, 2005, 10:41 pm
Q: Seconary certificate on a smart card August 5, 2006, 6:24 am
Certificate for Smart Card User September 3, 2008, 5:26 am
Smart card certificate validity period November 21, 2005, 8:10 am
PKI User Certificate on Smart Card auto renewal ? August 29, 2007, 11:22 am
Smart Card Logon July 20, 2006, 2:39 am
Smart Card - two readers December 8, 2006, 8:16 am
Look at the contents of a smart card? April 24, 2007, 12:04 pm
CRL caching and smart card logon November 28, 2005, 3:08 pm
Slow logon with smart card November 30, 2005, 1:35 pm

The site map in XML format XML site map

Contact Us | Privacy Policy