Hi all,
I am testing the Identity Alliance CSP with citrix and have run into a problem with smartcard windows login, via citrix.
My setup:
Server:
Windows 2000
Microsoft certificate services.
Citrix MetaFrame Server. Version XP 1.0 Feature Release 3
Identity Alliance CSP installed.Client:
Windows XP SP1
Citrix MetaFrame Program neighbourhood client. Version 8.100.29670
Identity Alliance CSP installed.Smartcard: Oberthur Cosmopolic V4 loaded with latest MuscleCard Applet.
What works:
1) Used Microsoft Cert Services to generate a keypair(1024) and cert on the card using smartcard user template and the Identity Alliance CSP.
2) Used card to perform a smartcard login locally on the AD (Windows 2000).
3) Used card to perform a remote domain login from client pc (Windows XP)
4) Setup Citrix client and performed a username/password login, via citrix to the AD/Metaframe server.
5) Used scconfig command to allow MuscleTools-IDA.exe to have access to the local smartcard reader and card inside a citrix session. Via the remote citrix session I could successfully execute MuscleTools-IDA, connect to the local token and list the contents.
What failed:
1) Using the Citrix client attempted to perform a windows smartcard login.
- Windows login screen appeared as normal: "Insert card or press Ctrl-Alt-Delete to begin"
- Inserted muscle card and was prompted for PIN.
- Typed in correct PIN.
- ERROR: "Your credentials could not be read from the smart card. Verify the card is valid, and that it seated properly in the reader"
- Typed in incorrect PIN. Same error.
Any ideas here would be much appreciated. Also is there some way of getting debug info from the CSP?
Thanks sim
_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
_______________________________________________ Muscle mailing list [email protected] http://lists.drizzle.com/mailman/listinfo/muscle
