Can SSO credentials be stored on a smart card without encrypting them using PKI e.g using a passphrase instead?
Because no 2 organizations have the same environment, SecureLogin includes preferences and features that allow you to customize the installation to meet your requirements.
Options such as where the SSO credentials are stored (encrypted on a hard disk or smart card) and how they are encrypted (using PKI or a passphrase generated key, for example) are all configurable with a few clicks of the mouse.
To configure SecureLogin to store credentials on the smart card, set the following preference at the GPO, OU, or User object level (as desired).
- Store credentials on smart card = Yes
To configure SecureLogin NOT to use PKI encryption, set the following preference at the GPO, OU, or User object level (as desired).
- Use smart card to encrypt SSO data = No
You can then set the preference Enable passphrase security system to Yes or Hidden as per your requirements.