[THIN] Smartcard authentication

• From: "Pete Kuhn" <pkuhn@xxxxxxx>
• To: <thin@xxxxxxxxxxxxx>
• Date: Wed, 25 Apr 2007 11:59:07 -0400

Greetings,
I am trying to setup smartcard authentication for a shared thin client device 
using password managers hotdesktop. I am trying to get this to work on an HP 
t5720.
 
I am running into 2 problems. Has anyone experienced these problems and found 
solutions. 
 
Problem 1:
 
The smartcard authentication will not work on the HP t5720 XPe OS. I have the 
machine joined to our domain. The OS prompts for either "insert smartcard or 
ctrl-alt-del". After inserting the smartcard and supplying the correct PIN the 
following message is displayed after roughly 60 seconds..
 
"The system could not log you on. Your credentials could not be verified"
 
I can authenticate using the users credentials but not the smartcard. 
 
FYI - The same card can be successfully used on a machine that has a full OS of 
XP. 
 
Problem 2: 
 
This is on a full OS of XP. SP2
 
I have installed the citrix hotdesktop client. In order for a citrix app to 
launch using the HDU the client needs to be installed with the option "not to 
use the local credentials". With doing this I loose the passthrough 
authentication capabilities. If I install the client with the option "use local 
user and credentials", when I launch  a citrix app it uses the HDSU instead of 
the HDU account. 
 
FYI - We do not use the program neighborhood client as a standard. We create 
ica files and publish them through our intranet home page. Yes, I have put the 
proper statements in the ica file to allow for passthrough authentication. 
 
I want to have the best of both worlds - SSO and hotdesktop. 
 
Can anyone tell me if they have successfully deployed this and what solution 
would be for the problems I am having. I am using athena smartcards. 
Thanks in advance
 
Pete Kuhn
Technical Staff Specialist MCNE, MCSE
Technical Deployment Team
University of Maryland Medical System
22 S. Greene St. 
Mail Stop PP-33
Baltimore, MD 21201-1590
410-328-0381

"I believe that every human has a finite number of heartbeats. I
don't intend to waste any of mine running around doing
exercises." -- Buzz Aldrin 

                                                                                
                             

This e-mail and any accompanying attachments may contain protected health 
information about an identified patient.  State and federal law protect the 
confidentiality of this information.  If the reader of this message is not the 
intended recipient; you are prohibited from using, disclosing, reproducing or 
distributing this information; you should immediately notify the sender by 
telephone or email and delete this e-mail.

• Follow-Ups:
  • [THIN] Re: Smartcard authentication
    • From: Greg Reese

Other related posts:

• » [THIN] Smartcard authentication
• » [THIN] Re: Smartcard authentication

• » Related posts
• » Previous by Date
• » Next by Date
• » This Month's Archive
• » Main Archive Page

• » View list details
• » Manage your subscription