After configuring BSM with the SmartCard Authentication Guide, the user might be continuously prompted to enter the PKI PIN when switching between pages in the GUI console
The required change has to be applied in the httpd-ssl.conf file:
In this file, you will find this section:
This section needs to be wrapped with a URL constraint to have this particular URL do the Smartcard authentication (and thus the PIN prompt), while the rest of the application session will be server-authenticated https after a valid application session is established.
After the change in the configuration file, the Apache Web server needs to be restarted to ensure that the configuration is activated.
Please note that with this change, the client certificate enforcements for all of the data collectors is no longer required, i.e. many of the data collector sections of the SmartCard Authentication Guide are no longer needed, as you can focus entirely on the setup of the user-related configuration that is documented in the guide.