|
Posted by Daryl Lufor on November 2, 2005, 10:25 pm
Please log in for more thread options
Hi
i am Daryl Lufor from mauritius
i am not using Smart Cards in my organization but according to what i have
learned during my MCSE smart card require EAP/TLS as protocol of security to
authenticate through keberos in Active directory
try to look a little bit at this side the EAP/ TLS
cheers
Daryl
> Hi all,
>
> I am trying to setup smart card logon in Windows 2003 domain. Setup
> Offline Rootca, and Enterprise Sub CA for certificate enrollment.
> Assigned DC certificates. Able to write certificate and public/private
> key pair to Smartcard. I am using Gemsafe libraries 4.2. Able to
> access the certifcates for email encryption and signing from the smart
> card. But only smartcard logon certifcates does not work.
>
> when I try to logon I am getting error, event id 11 on application log,
> saying an error occured while decrypting a message using the smartcard
> inserted: Access denied.
>
> Enabled Logon auditing, event id 537 on security log with status code
> 0xc000006d substatus code: 0xc0000321
>
> I am using GemXpress Pro cards.
>
> Any hints.........
>
> Thanks
> Ahmad Muhsin A.K.
>
| 
XML Sitemap