Smart Card Login + Certificate Login to AD -> Lost smart card

Discussion in 'Server Security' started by JY, Dec 16, 2005.

  1. JY

    JY Guest

    We have AD login using smart card + certificate working fine. We also know
    what needs to be done in the event the user forgets the smart card when they
    come to the office (let them temporarily login using a password and disable
    it the next day). However, what are people (companies who have implemented
    this MS solution, including MS) doing with the user who is a traveler with a
    laptop, has a good cached profile (from the last successful smart card login
    from the office before disconnecting), loses the smart card and needs to
    logon to the desktop at a foregin country (or anywhere where they are not
    connected to the corporate network and can't due to the inability to logon to
    the desktop in the first place?)?

    Does anyone have a solution for this? Is there no solution?
    JY, Dec 16, 2005
    1. Advertisements

  2. Losing their smart card is akin to forgetting their password and as long as
    they can not connect to a network that allows access to a domain controller
    they are out of luck. If there are easy workarounds then security would not
    be adequate. If many users are loosing their smartcards then you should
    find out why and how to minimize that. --- Steve
    Steven L Umbach, Dec 17, 2005
    1. Advertisements

  3. JY

    Saleh Matani Guest

    yes there is a 1/2 solution ,
    just create a local profil for that user on notebook and user can logon
    as local user and not domain user on his notebook and do everything he

    Saleh Matani
    Saleh Matani, Jan 5, 2006
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.