HP ActivCard Smart Card Instrukcja Użytkownika

1Implementation of an ActivCard® smart card solution on HP CCIIntroduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

10Step 3: HP blade PC middleware configurationThe following provides HP blade PC software configuration:• For the purposes of this white paper, an HP

11• USB CAC approved smart card reader (SCM Microsystems SCR331 Reader)Driver: SCR33X2K.sys, version 4.27.00.01NOTE: For Microsoft Windows CE.NET, you

12d) In the right pane, expand Smart card readers.e) Select the installed smart card reader.f) Under Device status, verify the message “This device i

135. In the Local Devices area, select Smart cards.6. Connect to the blade PC on which you will set up the smart card and log in as a domain-authenti-

14Initialization of the smart card using HP Session Allocation Manager Client (HPSAM Client)1. Power on the thin client with the smart card reader ins

156. Connect to the blade PC on which you will set up the smart card, and then log in as a domain-authenticated user.7. Verify the ActivCard icon is d

16Requesting a certificate from the blade PC1. Open Internet Explorer and go to the Certification Server enrollment Web site. The address of this Web

176. If a warning message displays about a potential scripting violation, press Yes to continue with the certificate request.7. After the system gener

18To verify that the CCI SmartCard Logon certificate for the user is installed on the smart card:1. Click the ActivCard icon in the system tray to ope

19Usage casesUsage case 1: User authentication from client device to blade PC using RDPThe following steps provides instructions for performing a func

2This white paper discusses the implementation of ActivCard® smart cards on HP Consolidated Client Infrastructure (CCI). This white paper is not inten

202. Open the HPSAM client window and initiate a connection to the blade PC.3. Make sure a smart card is installed in the reader. The system requests

214. In Internet Explorer, type the address of a secure Web site. 5. If the system displays security alert messages, click OK.The LED on the card read

224. In the Company Name box, type the name for the VPN connection (for example, Work), and then click Next.5. Select Do not dial the initial connecti

232. Right-click on the VPN connection icon and select Properties.You can initiate the VPN connection after setting it up, as follows:1. Start the VPN

24After the connection is established, the network connection icon displays in the system tray.Additional informationFor more information about HP Con

3• Blade Enclosure.• HP e-class blade enclosure.• Blade PCs• HP bc1000 blade PC running Microsoft Windows XP SP2 w/HPSAM blade service installed.• HP

4Software configurationConfigure the following items to set up a smart card solution on CCI:1. Certificate Authentication (CA) service2. Group policy

54. Type a name for the new template in the Template display name box. This example uses CCI Smartcard Logon.

65. Click the Request Handling tab.6. Select or type 1024 in the Minimum key size box.7. Click the CSPs button.8. Select Requests can use any CSP avai

710. In the Permissions for Authenticated Users box, in the Allow column, select Read and Enroll.You have completed creation of the template.11. Copy

8d) Select New > Certificate Template to Issue.12. Select the template, and then click OK to import the template.

9Step 2: Group policy settingApply the following smart card group policy settings to the computer through a user policy setting or through a computer