Go Back   TechArena Community > Technical Support > Computer Help > Windows Security
Become a Member!
Forgot your username/password?
Register Tags Active Topics RSS Search Mark Forums Read

Sponsored Links



Smart Card Logon

Windows Security


Reply
 
Thread Tools Search this Thread
  #1  
Old 20-07-2006
Member
 
Join Date: Sep 2004
Posts: 74
Smart Card Logon

We have few PCs running with Windows XP and Windows 200 and all these systems are connected with a single network. So far users need to login using their username and password. But I want to restrict all of them to login with smart card through the local computer security policy. Note, I want to do this only for users and not for the Admin. So can you guys please tell me how can I do this keeping an exception for Administrator to use Smart Card logon?

Reply With Quote
  #2  
Old 21-07-2006
Member
 
Join Date: Sep 2004
Posts: 90
Re: Smart Card Logon

Most probably that is not possible unless and until you delete the local policy registry entry for Smart Card enforcement by login in to Safe Mode. You need to do this because there is no way to add Local account to an exception lists however you can do this on a User and Computer based enforcement in the Active Directory Domain. Once in safe mode, you will need to delete the Smart Card enforcement through Regedit or HKLM hive . Let me know if you need any more help.
Reply With Quote
  #3  
Old 21-07-2006
Member
 
Join Date: Sep 2004
Posts: 56
Re: Smart Card Logon

By going to Active Directory you can restrict userís account to use Smart Card logon but remember that it will applied for any domain computer that they logon to. Also exception for Administrator will be bit difficult because computer configuration Group Policy applies to all systems connected with the domain.
Reply With Quote
  #4  
Old 22-07-2006
Member
 
Join Date: Jul 2004
Posts: 141
Re: Smart Card Logon

First of all the registry key that enables Smart Card enforcement is [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\system] "SCForceOption"=dword:00000001

And as far as I know you can disable the enforcement by deleting SCForceOption or setting its DWORD Value to 0. Remember that you need to boot the system in Safe Mode and login as Admionistrator.
Reply With Quote
  #5  
Old 16-09-2008
Member
 
Join Date: Sep 2008
Posts: 2
Smart Card Logon

Good suggestion in regedit thanks.
Reply With Quote
  #6  
Old 16-09-2008
Member
 
Join Date: Sep 2008
Posts: 2
Good suggestion in regedit thanks.
Reply With Quote
Reply

  TechArena Community > Technical Support > Computer Help > Windows Security
Tags: ,



Thread Tools Search this Thread
Search this Thread:

Advanced Search


Similar Threads for: "Smart Card Logon"
Thread Thread Starter Forum Replies Last Post
How to Install Java Card CAP File into a Smart Card mysalmon Software Development 2 22-09-2011 12:01 PM
Smart card is required for interactive logon In_the_desert Windows Security 4 20-08-2010 12:04 PM
Does Java Card require a USB CCID-compliant smart card reader Isiah Portable Devices 5 21-07-2010 04:20 AM
Windows Vista smart card logon on stand alone machine Michele Vista Help 2 27-05-2009 06:50 PM
Smart Card Certificate based logon with Windows XP SP2 Kr8zyCanuck Operating Systems 2 05-11-2008 04:17 PM


All times are GMT +5.5. The time now is 03:31 AM.