Mandatory Smart Card Logon

vern64

New Member
Our enviroment prevents us from locking down the user to mandatory smart card logon against the individual user account or GPO against the user, because there are to many legacy apps tied to AD logon that cannot accept the certificate based logon.

How do I enforce workstation level mandatory smart card logon? Are there 3rd party softwares that will allow smart card logon management?
 

My Computer

Are you trying to Get into a computer? without using the Smart card login?

If so this is classed as "Hacking" into a computer whether it be yours or Someone other persons - Without the knowledge of this we cannot help you.

Vista Forum Community does not participate in any Illegal actions and doing so may cause an Instant Ban

Please see http://www.vistax64.com/general-discussion/118651-forum-rules-please-read.html For More Information

Vista Forums is an independent web site and has not been authorized,
sponsored, or otherwise approved by Microsoft Corporation.
"Windows Vista", the Start Orb, and related materials are trademarks of Microsoft Corp.
© Designer Media Ltd

If NOT then please specify what it is you are trying to do

Sorry for any Inconvenience,
Josh
 

My Computer

System One

  • Manufacturer/Model
    Custom Built
    CPU
    Intel Core i5 2400 @ 3.10GHz
    Motherboard
    Foxconn H67MP-S/-V/H67MP
    Memory
    8.0GB DDR3 @ 665MHz (2GBx4)
    Graphics Card(s)
    AMD HD Radeon 6870
    Sound Card
    Realtek High Definition Audio
    Monitor(s) Displays
    SMB1930NW (1440x900@60Hz)
    Screen Resolution
    1280x800
    Hard Drives
    977GB Seagate ST31000524AS ATA Device (SATA) + 250GB WD iSCSI attached Drive
    Case
    Novatech Night
    Keyboard
    Standard PS/2 Keyboard
    Mouse
    Dell HID-compliant mouse
No... Again, we do not want to lock down smart card logon to the user. Users have to VPN in remotely using a Citrix Portal, and do not have card readers at home. We want to lock down smart card logon only when a user is on a company owned computer on the LAN. I have stood up many PKI infrastructures in my day, but through GPO and Specific user accounts with an exception group. We want to do this here, but not user based... Workstation based.
 

My Computer

Back
Top