Problem with the smart card logon
Dear Experts
we are using Windows 2008 R2 enterprise version, we have installed the microsoft Certificate authority and issued the certificate for the users for the SMART CARD LOGON which are registered on the Smart card device
while i try to login with the SMART CARD ( ETOKEN ) i get the following error
THE SYSTEM COULD NOT LOG YOU ON. YOUR CREDENTIALS COULD NOT BE VARIFIED
can you suggest what can be the problem and probable solution for same
BEST REGARDS
SHARAD
December 28th, 2010 5:14am
Hello,
i suggest to use the security forum instead this one:
http://social.technet.microsoft.com/Forums/en/winserversecurity/threadsBest regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
Free Windows Admin Tool Kit Click here and download it now
December 28th, 2010 8:15am
Hi,
Please help clarify the following questions:
1. Does the smart card logon error occur for one user or all the users?
2. Did the smart card logon work after you enable it?
3. Does the issue occur on some computers or all computers? What is the OS version of the problematic computer?
For the error “the system could not log you on. your credentials could not be verified”, please check the following support article
first:
Guidelines for enabling smart card logon with third-party certification authorities
http://support.microsoft.com/kb/281245
Although the article is with third-party certification authorities, the checklist is similar for your situation. Please check it first for
troubleshooting.
For more information, please also refer to the following articles:
Smart Card Troubleshooting Guide
http://technet.microsoft.com/en-us/library/dd979536(WS.10).aspx
You cannot use a smart card certificate to log on to a domain from a Windows Vista-based client computer
http://support.microsoft.com/kb/959887
You cannot use a smart card certificate to log on to a domain from a Windows Vista-based or a Windows Server 2008-based client computer
http://support.microsoft.com/kb/955558/
For further troubleshooting, please help gather the following files on the computer which the logon error was encountered.
Event log
-------------
1. Click "Start", click “Run”, input "eventvwr" and press Enter.
2. Expand the "Windows Logs" node on the left pane, right-click on "Application" and click "Save All Events As"; in the pop-up window, click
to choose the Desktop icon on the left frame, input "app" in the "File name" blank, and then click save.
3. Right click on "Security", with the same method, save it as "sec".
4. Right click on "System", with the same method, save it as "sys".
5. Locate the saved log files on the Desktop and send them to us.
Please locate the saved files for research. Upload these file to the following workspace.
You can upload the information files to the following link. (Please choose "Send Files to Microsoft")
Workspace URL: (https://sftus.one.microsoft.com/choosetransfer.aspx?key=f725339c-d0c3-41aa-82fa-5a6c1cbe0485)
Password: 7B*++lBR5YJ4zbY{
Note: Due to differences in text formatting with various email clients, the workspace link above may appear to be broken.
Please be sure to include all text between '(' and ')' when typing or copying the workspace link into your browser. Meanwhile, please note that files uploaded for more than 72 hours will be deleted automatically. Please ensure to notify me timely after
you have uploaded the files. Thank you for your understanding.
Thanks.
Nina
This posting is provided "AS IS" with no warranties, and confers no rights.
December 30th, 2010 5:23am
Hello,
I have a similar problem. I have 2 DC on my local network (Windows 2008 Standard SP2 + Windows 2000 SP4) and about 20 pc's client, many with Windows XP and someones with Windows 7. I get the commented error only on one laptop with Windows 7 Professional
(32 bits), all the rest computers logon succefully on the domain. I've checked all that I could following the proposed links without success.
Please, can you help me?
Free Windows Admin Tool Kit Click here and download it now
April 18th, 2011 9:42am