Can SSO credentials be stored on a smart card without encrypting them using PKI e.g using a passphrase instead?

  • 7940685
  • 19-Aug-2009
  • 30-Jan-2014

Environment

SecureLogin
SecureLogin SSO
6 and later
All


Situation

Question

Can SSO credentials be stored on a smart card without encrypting them using PKI e.g using a passphrase instead?

Resolution

Answer

Because no 2 organizations have the same environment, SecureLogin includes preferences and features that allow you to customize the installation to meet your requirements.

Options such as where the SSO credentials are stored (encrypted on a hard disk or smart card) and how they are encrypted (using PKI or a passphrase generated key, for example) are all configurable with a few clicks of the mouse.

To configure SecureLogin to store credentials on the smart card, set the following preference at the GPO, OU, or User object level (as desired).

  • Store credentials on smart card = Yes

To configure SecureLogin NOT to use PKI encryption, set the following preference at the GPO, OU, or User object level (as desired).

  • Use smart card to encrypt SSO data = No

You can then set the preference Enable passphrase security system to Yes or Hidden as per your requirements.