|
Posted by Jocke on June 3, 2005, 8:34 am
Please log in for more thread options
Is it possible to re-initialize a smart card, i.e. erase all certificates and
generate new keys, using Enterprise CA on Window 2003 Server?
Best regards
|
|
Posted by Paul Adare on June 3, 2005, 11:47 am
Please log in for more thread options
microsoft.public.windows.server.security news group, =?Utf-8?B?Sm9ja2U=?
> Is it possible to re-initialize a smart card, i.e. erase all certificates and
> generate new keys, using Enterprise CA on Window 2003 Server?
>
Not using the CA, no. For that you need software from the smart card
vendor.
--
Paul Adare
MVP - Windows - Virtual Machine
http://www.identit.ca/blogs/paul/
"The English language, complete with irony, satire, and sarcasm, has
survived for centuries without smileys. Only the new crop of modern
computer geeks finds it impossible to detect a joke that is not clearly
labeled as such."
Ray Shea
|
|
Posted by Karl Levinson, mvp on June 3, 2005, 11:11 pm
Please log in for more thread options
> microsoft.public.windows.server.security news group, =?Utf-8?B?Sm9ja2U=?
>
> > Is it possible to re-initialize a smart card, i.e. erase all
certificates and
> > generate new keys, using Enterprise CA on Window 2003 Server?
> >
>
> Not using the CA, no. For that you need software from the smart card
> vendor.
.... and also I think you might need the PIN or password used to initialize
the smart card, or else the card might be completely useless.
|
|
Posted by Paul Adare on June 4, 2005, 2:33 am
Please log in for more thread options microsoft.public.windows.server.security news group, Karl Levinson, mvp
>
> > microsoft.public.windows.server.security news group, =?Utf-8?B?Sm9ja2U=?
> >
> > > Is it possible to re-initialize a smart card, i.e. erase all
> certificates and
> > > generate new keys, using Enterprise CA on Window 2003 Server?
> > >
> >
> > Not using the CA, no. For that you need software from the smart card
> > vendor.
>
> ... and also I think you might need the PIN or password used to initialize
> the smart card, or else the card might be completely useless.
All smart cards have an Admin PIN which is what would be required here.
No need for the user's PIN.
--
Paul Adare
MVP - Windows - Virtual Machine
http://www.identit.ca/blogs/paul/
"The English language, complete with irony, satire, and sarcasm, has
survived for centuries without smileys. Only the new crop of modern
computer geeks finds it impossible to detect a joke that is not clearly
labeled as such."
Ray Shea
|
|
Posted by Karl Levinson, mvp on June 4, 2005, 6:32 pm
Please log in for more thread options
> All smart cards have an Admin PIN which is what would be required here.
> No need for the user's PIN.
Unless the user was the admin, and the admin is the user that is now
departed. For better or worse, my smart card is set up that way.
|
| Similar Threads | Posted | | Smart Card Login + Certificate Login to AD -> Lost smart card | December 15, 2005, 10:03 pm |
| Smart card reader and card supplier in Australia | May 5, 2008, 10:37 pm |
| Smart Card - two readers | December 8, 2006, 8:28 am |
| Smart Card and VPN in Vista. | May 26, 2008, 3:36 am |
| smart card offline logon | July 7, 2005, 9:02 am |
| Base Smart Card CSP Update | December 7, 2005, 3:12 pm |
| Q: Seconary certificate on a smart card | August 5, 2006, 6:24 am |
| Question Regarding Smart Card Deployment | September 12, 2007, 2:16 pm |
| Using a flash drive instead of a smart card. | April 28, 2008, 1:25 am |
| Smart card enrollment issues | April 29, 2008, 8:23 pm |
|
XML Sitemap