I'm looking to incorporate users' HID building cards as an additional authentication factor for some physical workstations in our office. However, I'm having trouble adding the readers I got for testing, also from HID, and I want to know if this is possible. Any directions on where to start would be greatly appreciated!
5 Answers
It's definitely possible, but the setup can get pretty intricate. You'll need to establish a Certificate Authority (CA) within your domain to manage the certificates on the cards and to authenticate users at the workstations. It's a more involved project than it might seem at first!
It sounds like you're using tap-only HID Seos cards. Are they equipped with a visible chip, or do they just work with tapping? That could affect how you might be able to set things up.
If you're looking for a smooth experience, I really recommend Imprivata. They’re widely recognized in this space. Trying to roll this out using scripts and without the right tools isn't advisable.
Yes, smart card authentication can work on Windows, but be prepared for complexity. It requires some patient effort, and while it’s challenging, it can be done with determination. A good starting point for resources is the official site for ID management. Best of luck!
HID offers a variety of credential types like iCLASS, Prox, SEOS, and Crescendo. Not all of them can be used for what you're aiming for, but with third-party software like Imprivata, you can utilize the Prox or unique ID of a card to facilitate login to the platform, which would then log the user into Windows and the domain. It’s a workaround but may be an effective solution.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures