Smart cards and web access

  • Thread starter Thread starter JJ
  • Start date Start date
J

JJ

hey guys,

real quick I am looking for a smart card solution that
will work with windows 2003. I work for and insurance
company and would like our idependant Agents (meaning the
don't work for us or log into our network) to be able to
use a smart card to log on to the portion of our website
that is dedicated to them. I don't want them to have to
go to the website punch in a username and password, just
using a smart card for auth. Any idea's.

Thanks
 
Hello JJ,

I would like to refer you to our Smart card solution here at Microsoft.
Generally you shouldn't use just a Smart Card for authentication. It is
always advisable to use at least a "two factor" authentication (Smart Card
PLUS a user password). This will prevent unauthorized access to your web
site from misuse or lost/stolen smart cards.

Here is some good documentation about the solution we use:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/itsolutio
ns/msit/security/mssecbp.asp

Hope this gets you started
Cheers,

Michael Cole
MCSE, MCSA
Microsoft Security Team



--------------------
../Content-Class: urn:content-classes:message
../From: "JJ" <[email protected]>
../Sender: "JJ" <[email protected]>
../Subject: Smart cards and web access
../Date: Thu, 20 Nov 2003 17:12:34 -0800
../Lines: 12
../Message-ID: <[email protected]>
../MIME-Version: 1.0
../Content-Type: text/plain;
../ charset="iso-8859-1"
../Content-Transfer-Encoding: 7bit
../X-Newsreader: Microsoft CDO for Windows 2000
../Thread-Index: AcOvzItE/NYBmkBNRYuQshqE7TTd/A==
../X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300
../Newsgroups: microsoft.public.win2000.security
../Path: cpmsftngxa07.phx.gbl
../Xref: cpmsftngxa07.phx.gbl microsoft.public.win2000.security:16015
../NNTP-Posting-Host: tk2msftngxa09.phx.gbl 10.40.1.161
../X-Tomcat-NG: microsoft.public.win2000.security
../
../hey guys,
../
../real quick I am looking for a smart card solution that
../will work with windows 2003. I work for and insurance
../company and would like our idependant Agents (meaning the
../don't work for us or log into our network) to be able to
../use a smart card to log on to the portion of our website
../that is dedicated to them. I don't want them to have to
../go to the website punch in a username and password, just
../using a smart card for auth. Any idea's.
../
../Thanks
../
 
Micheal,

Thanks, I should have made myself more clear. There will
be a pin associated with the smartcard.
 
JJ.

Thanks for the clarification. Just wanted to make sure you stay secure with
your solution :). Did the link I referred you to help you at all? Let me
know if you are looking for additional information. I'll be glad to assist.

Cheers,

Michael Cole
MCSE, MCSA
Microsoft Security Team



--------------------
/Content-Class: urn:content-classes:message
/From: <[email protected]>
/Sender: <[email protected]>
/References: <[email protected]>
<[email protected]>
/Subject: RE: Smart cards and web access
/Date: Mon, 24 Nov 2003 17:33:56 -0800
/Lines: 76
/Message-ID: <[email protected]>
/MIME-Version: 1.0
/Content-Type: text/plain;
/ charset="iso-8859-1"
/Content-Transfer-Encoding: 7bit
/X-Newsreader: Microsoft CDO for Windows 2000
/X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4910.0300
/thread-index: AcOy9DF1e6b3McwMSbGo3AZE4wAr/Q==
/Newsgroups: microsoft.public.win2000.security
/Path: cpmsftngxa07.phx.gbl
/Xref: cpmsftngxa07.phx.gbl microsoft.public.win2000.security:16281
/NNTP-Posting-Host: tk2msftngxa14.phx.gbl 10.40.1.166
/X-Tomcat-NG: microsoft.public.win2000.security
/
/Micheal,
/
/Thanks, I should have made myself more clear. There will
/be a pin associated with the smartcard.
/>-----Original Message-----
/>Hello JJ,
/>
/>I would like to refer you to our Smart card solution
/here at Microsoft.
/>Generally you shouldn't use just a Smart Card for
/authentication. It is
/>always advisable to use at least a "two factor"
/authentication (Smart Card
/>PLUS a user password). This will prevent unauthorized
/access to your web
/>site from misuse or lost/stolen smart cards.
/>
/>Here is some good documentation about the solution we
/use:
/>http://www.microsoft.com/technet/treeview/default.asp?
/url=/technet/itsolutio
/>ns/msit/security/mssecbp.asp
/>
/>Hope this gets you started
/>Cheers,
/>
/>Michael Cole
/>MCSE, MCSA
/>Microsoft Security Team
/>
/>
/>
/>--------------------
/>./Content-Class: urn:content-classes:message
/>./From: "JJ" <[email protected]>
/>./Sender: "JJ" <[email protected]>
/>./Subject: Smart cards and web access
/>./Date: Thu, 20 Nov 2003 17:12:34 -0800
/>./Lines: 12
/>./Message-ID: <[email protected]>
/>./MIME-Version: 1.0
/>./Content-Type: text/plain;
/>./ charset="iso-8859-1"
/>./Content-Transfer-Encoding: 7bit
/>./X-Newsreader: Microsoft CDO for Windows 2000
/>./Thread-Index: AcOvzItE/NYBmkBNRYuQshqE7TTd/A==
/>./X-MimeOLE: Produced By Microsoft MimeOLE
/V5.50.4910.0300
/>./Newsgroups: microsoft.public.win2000.security
/>./Path: cpmsftngxa07.phx.gbl
/>./Xref: cpmsftngxa07.phx.gbl
/microsoft.public.win2000.security:16015
/>./NNTP-Posting-Host: tk2msftngxa09.phx.gbl 10.40.1.161
/>./X-Tomcat-NG: microsoft.public.win2000.security
/>./
/>./hey guys,
/>./
/>./real quick I am looking for a smart card solution that
/>./will work with windows 2003. I work for and insurance
/>./company and would like our idependant Agents (meaning
/the
/>./don't work for us or log into our network) to be able
/to
/>./use a smart card to log on to the portion of our
/website
/>./that is dedicated to them. I don't want them to have
/to
/>./go to the website punch in a username and password,
/just
/>./using a smart card for auth. Any idea's.
/>./
/>./Thanks
/>./
/>
/>.
/>
/
 
Back
Top