PKI based Smart Card Logon
for Windows® Domains |
| |
This applies to the case of someone running a network with multiple workstations connected and sensitive data. With
"PKI based
Smart Card Logon for Windows® Domains" every network access will obtain simple never-the-less solid protection by
Smart Cards.
|
|
|
Secure PKI-based access per Smart Card and PIN removes all uncertainties incident to environments of user identities and passwords.
|
Personalization and publication of Smart Cards will be effected via the
"Smart Card Enrollment Station, Microsoft® Certificate Services" into which the Sefirot software will seamlessly be integrated after installation. The
Smart Cards will be tied to the Public Key Infrastructure during personalization.
|
|
When accessing a workstation per Smart Card and PIN some secure authentication processes will be passed. Keys resting on the
Smart Card and related certificates will be taken into consideration during these authentication processes. After short delay access to applications and systems as prearranged will be available to the user qualified.
|
|
A personalized Smart Card encompasses a set of privileges for the respective user. These privileges will be assigned by domain controllers and distributed an handed down to workstations of the network.
|
|
Various end procedures may be configured. While pulling the Smart Card off the card reader different actions may be initiated according to preset preferences. E.g. to end a user session (including saving of active applications), or: "no action", or subsequent access denial, or forced session end (without saving of user active
applications).
|
|
Smart Cards:
|
all Sefirot supported Smart Cards functional with "PKI based Smart Card
Logon for Windows Domains".
|
|
Platforms:
|
domains based upon Windows® 2000 and Windows® 2003 servers. Clients: Windows® 2000, Windows® XP.
|
|
