Question

Locked

How to restrict Smart Card Logon?

By bernie.lederer ·
We have 5000 smart card users. Of the 5000, there are approx 300 who have a certificate mistake. We need a solution to prevent these users from logon to any of the 5000 workstations. W2K3 AD domain, Vista clients.

This conversation is currently closed to new comments.

2 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Answers

Collapse -

revoke the bad certificate

by CG IT In reply to How to restrict Smart Car ...
Collapse -

True...

by bernie.lederer In reply to revoke the bad certificat ...

Bad was a 'bad' term to use. The governing agency who manage the cards is looking at the fallout of revoking right now, but these are PIV cards, and these cards manage Physical and Logical access to many other things outside of Authentication to the network, and the users are not slated to be updated (new cards) until Feb. Plus, they are taking the cost (Certificate vendor is commercial) into consideration as well. THey are looking for a user based solution within AD to just shut down the option of using PIV authentication to take place.

Appreciate your input.

Back to Windows Forum
2 total posts (Page 1 of 1)  

Related Forums