Nick
Guest
|
 Posted:
Tue Jan 04, 2005 2:29 pm Post subject:
Smartcard authentiocation |
|
|
Smartcard authentication
Hi, I'm having a serious problem trying to implement Gemplus Gemsafe smart
cards on a server 2003/xp pro network. I am getting the message “unable to
verify credentials” when I try to log on from a workstation using the
smartcard. I can log onto the server if the smartcard is used locally on the
server, which indicates that the certificates are being issued correctly, and
are valid, and are located in the correct places on the server. The mcc snap
ins used said that the certificates were located in the NTAuth store ok. I
can log onto the domain from a workstation using the standard
username/password/domain entry, so its accessing active directory fine, and
the network fine.
When I called gemplus, they thought it was SP2 on the XP machines, so they
sent me new software, but I have tried it on workstations with out SP2 too,
which has the same results.
I've gone through all the MS guides, but cant find anything that has helped,
or that hasn’t been followed already.
Has anyone come across this issue before?
Thanks
- Nick |
|
Steven L Umbach
Guest
|
| Posted:
Wed Jan 05, 2005 7:16 am Post subject:
Re: Smartcard authentiocation |
|
|
I have not experienced that exact problem but here are some things to check.
Disable the XP SP2 firewall on the client if enabled at least until the
problem is resolved. On the client check the mmc certificates snapin for
computers in the trusted root folder to make sure that your enterprise CA is
listed there and if not import the certificate into that folder. Also verify
that your dns configuration is correct in the domain in that domain
controllers point only to themselves or other domain controllers as their
preferred dns servers and that the domain client points only to AD domain
controllers running dns for the domain zone. You may still be able to logon
to a domain computer without contacting a domain controller via cached
credentials which may make it appear that everything is working fine when it
is not. Check the Event Viewer of the client computer for any pertinent
messages and run the support tools netdiag on it to see if any problems are
reported. -- Steve
"Nick" <Nick@discussions.microsoft.com> wrote in message
news:BD3D0558-9258-4024-96FA-CE0E4BB7F907@microsoft.com...
| Quote: | Smartcard authentication
Hi, I'm having a serious problem trying to implement Gemplus Gemsafe smart
cards on a server 2003/xp pro network. I am getting the message "unable to
verify credentials" when I try to log on from a workstation using the
smartcard. I can log onto the server if the smartcard is used locally on
the
server, which indicates that the certificates are being issued correctly,
and
are valid, and are located in the correct places on the server. The mcc
snap
ins used said that the certificates were located in the NTAuth store ok. I
can log onto the domain from a workstation using the standard
username/password/domain entry, so its accessing active directory fine,
and
the network fine.
When I called gemplus, they thought it was SP2 on the XP machines, so they
sent me new software, but I have tried it on workstations with out SP2
too,
which has the same results.
I've gone through all the MS guides, but cant find anything that has
helped,
or that hasn't been followed already.
Has anyone come across this issue before?
Thanks
- Nick
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in