Bypass select a digital certificate and a real user with a hint

Question

Bypass select a digital certificate and a real user with a hint

I am working with a C # .net application right now when I have smart card authentication that works correctly, allowing users to select their digital certificate and enter their output. However, I want to do away with letting the user select their certificate and get one of their certificates for them automatically (each user has the same certificates). This would make it so that when a user tries to enter the site, they will simply be presented with a hint. Any ideas on how to do this? All the users I work with use Internet Explorer 7 and have workstations with ActivIdentity and Tumbleweed.

+3

security authentication digital-certificate smartcard cac

Ben May 23 '12 at 20:07

source share

1 answer

Bahribayli · Accepted Answer · 2012-05-30T04:27:57+0000

Write a Java applet to perform a client-side job using PKCS # 11 shell, or, if you can restrict users to use IE, create and use ActiveX. I have already done both. For ActiveX, you must have a digital signature to declare it safe ActiveX.

This is not an easy task, but I found the Java applet easier to implement. The disadvantage is that the JRE (Java Runtime Environment) should already be installed on the client side and works well with the browser. The user must also grant permission to the applets to connect to their smart card on first launch.

Bypass select a digital certificate and a real user with a hint

More articles: