Smart card pass thru support for Windows Login and/or Admin Functions

Avatar
  • updated
  • Archived

From CW-7588576:

Partner is looking for a means to be able to use smart cards through a session to support smart card requirements for admin functions on remote systems. Notes that RDP supports a pass through device so local smart card is presented through the RDP session to the remote system for Authentication.

Avatar
0
Mike Bannerman Team Member
  • Pending Review
Avatar
0
Ed Davison

We are using SPYRUS Rosetta smart cards and Gemalto smart cards and need to be able to authenticate to AD accounts on a WIndows server that requires a certificate for user authenticaion.

Avatar
0
anonymous
  • Under Review
Avatar
0
anonymous
  • Pending Review
Avatar
0
anonymous
  • Considering for Future Release
Avatar
4
Tykisson

With the NIST 800-171 requirements being fully enforced, 2-factor for privileged accounts is a must. This means that I need to pass my usb based Windows SmartCard (Yubikey) login to the remote machine. I agree that RDP does have this functionality and I use it already from my local machine into local remote servers.

Avatar
1
B Martin

We need this function as well for NIST 800-171 requirements.

Avatar
1
RandySmith
Quote from B Martin

We need this function as well for NIST 800-171 requirements.

We ended up using a combination of Yubikey and AuthLite - works great for anything you need to authenticate. AuthLite integrates with AD and the YubiKey code ends up being the "username" and you enter your password. Since it's all just keyboard input, works fine locally and remote. No need to integrate any authentication protocols between the systems, all that magic happens on the backend.

Avatar
0
B Martin
Quote from RandySmith

We ended up using a combination of Yubikey and AuthLite - works great for anything you need to authenticate. AuthLite integrates with AD and the YubiKey code ends up being the "username" and you enter your password. Since it's all just keyboard input, works fine locally and remote. No need to integrate any authentication protocols between the systems, all that magic happens on the backend.

I think we're going to just use Duo. It solves all the issues and doesn't have to use a smartcard. I wish SC supported Smartcard Passthrough though, it'd be nice since then we can do this without recurring costs like Duo or other solutions need.

Avatar
0
Benjamin

Any update on adding this to a future release? I really need this feature so I can get away from RDP.

 Commenting is disabled

Top contributors

Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar