Centrify Express For Mac Smart Card

15-09-2021 by

Centrify express for mac smart card download

  1. Related Articles KB-3242: sctool commands for Centrify smart card support KB-3531: PIV card cannot login after certificate renewal When using a Smart card on Linux, and getting “This certificate (or its chain) is not valid' KB-4773: sctool -s command we get 'Cannot determine Centrify Smart Card status' KB-2466: No PIN prompt when using Smart Card KB-6041: How to.
  2. With support for more than 450 platforms, Centrify Services secure and manage the industry's broadest range of operating systems. Select one of the featured platforms to learn more about how Centrify modern PAM Services centrally secure and manage these operating systems.
  3. Mac users can log on to Microsoft Windows networks through DirectControl 4.2 from Centrify Corp., a provider of Active Directory-based access control and identity management solutions for non-Microsoft platforms. This newest offering for Mac OS X adds smart card-based login to Active Directory for single sign-on to Windows-integrated services and applications. Centrify leverages the PKI.

1 If you have Safari open, choose the Safari menu, then click Quit Safari. 2 Insert your smart card in the reader, then navigate to Utilities and open Keychain Access. 3 Select the provisioned CAC keychain for your smart card. 4 From Category list, select My Certificates. 5 Right-click the certificate you want to use to authenticate your identity. In most cases, you should select the.

We recommend configuring your Active Directory domain and forest to use AES-128 or AES-256 encryption for Kerberos in order to ensure you can configure smart card login. DES and RC4 encryption are no longer supported. Other prerequisites for enabling smart card support differ depending on whether you have configured a single-user or multi-user smart card.

For a single-user card, before enabling smart card support, make sure you do the following:

Smart
  • Provision a smart card with an NT principal name and PIN.

    Refer to Supported smart card profiles to verify that the profiel on your smart card is supported by Centrify.

  • Verify that the Active Directory Zone user’s UPN matches the UPN on the smart card.

For a multi-user card, before enabling smart card support, make sure you have the following in place:

Centrify Express For Mac Smart Card Login

  • A Windows Server 2008 or above domain controller for authentication.
  • The card is not configured with a UPN. If a card with a UPN is inserted, the Mac prompts for a PIN rather than prompting for a username and password.
  • An administrator has added the certificate on the card to the name mapping for the users the card is associated to. See the following Microsoft Technet Blog post: 'Mapping One Smart Card to Multiple Accounts' for more information on how to do this.

Centrify Express For Mac Smart Card Application

Card

Centrify Express For Mac Smart Card

Express

Centrify Express For Mac Smart Card

For either type of card, verify that the public key infrastructure to support smart card login is operational on the Windows computer running Active Directory and Access Manager. If the user is able to log in to a Windows computer with a smart card, and you have a card reader and a fully-provisioned card for the Mac computer, the user should be able to log in to the Mac computer once you configure it for smart card support.

Activation Question
Is 3utools Safe

Comments are closed.