Smartcard RDP certificate error
Hi all,
Used FIM CM to provision a smartcard. All vanilla, smartcard logon template, V2s, no HSMs. Provisioning went well, no errors, but when i try to use the card (Gemalto.NET USB token) to connect via RDP, an error pops up:
'This computer can't connecto to the remote computer because the smartcard credentials are not available....To fix this please logon as
xxx@xxx.com, then insert the smartcard into the smart card reader and use the certificates snap-in to verify that the smart card certificate is in the user's personal certificate store'
Both 'certutil -[scinfo/csptest] complete succesfully, no errors. The card also works fine on UAC prompts (after logging in using user/pass.
Any ideas?
Thanks,
LucaLuca Mihailescu
April 24th, 2012 12:15pm
bump:)Luca Mihailescu
Free Windows Admin Tool Kit Click here and download it now
May 1st, 2012 6:39pm
if you enroll a smartcard WITHOUT FIM CM, would that work?
FIM CM just enroll the users for a template. The configuration of the template is managed ourside of FIM CM
May 2nd, 2012 1:19am
hi Luca,
some questions just to dig deeper
Did you redirect the Smartcard device to the remote session - the "Local Ressources" configuration in Remote Desktop Manager?Did you issue Domain Controller Certificates to support Smartcard Logon?Does the Smartcard logon work locally?Where did you run the certutil - locally or within the remote session?/Matthias
Free Windows Admin Tool Kit Click here and download it now
May 11th, 2012 6:01am