Did anyone see the suggestion I posted? Registered mode for non-card use.
In fact, couldn't one use the Automated Token Import plugin and automatically have it automatically register all tokens that begin with "S1." and registered them as an "OVDC User"
http://wikis.sun.com/display/SRSS4dot2/Solaris+Sun+Ray+Interface+Plugins+-+man%283%29#SolarisSunRayInterfacePlugins-man%283%29-manutatiscriptinterface3 On 7/28/11 8:14 PM, Paul Whitener wrote:
Ivar you hit the nail on the head. I wanted to give access to an iPad but require cards on the DTUs. The DTUs are in a clinic at a university. So we want cards for the doctors and nurses so students can not "play". Then iPads can be used to access in the office. /paul On Thu, Jul 28, 2011 at 6:56 PM, Ivar Janmaat <[email protected] <mailto:[email protected]>> wrote: I don't think Paul request is that strange. Maybe a feature request for the next version? ;-) I am not talking about security. I agree with you on that. But what about a Sun ray environment in combination with Ipads. The Sun rays can be public terminals but you don't want any resource used on them unless the user has a smartcard With a smartcard the user can logon otherwise there is no access. The IPad however is personal so you can allow non smartcard logons. The IPad has its own access control. So people who have access to the Ipad are allowed to have access to a logon screen on OVDC without a smartcard. The same applies to a pc where a user has to logon to the PC domain first. Logging on to the device resembles inserting the smartcard. Then the next step (logging on to VDI) is the same for Sun Rays and other devices. I can see that Pauls policy might be handy in some mixed device situations were there are a limited number of personal laptops and Ipads and large numbers of Sun Rays. Kind regards, Ivar Bob Doolittle schreef: There is no way to enable non-card access for the soft-client only, if that's what you're asking. Generally, this seems to make little sense. If anything a soft client is *less* secure than hardware, since software is easier to spoof. So to restrict hardware clients from a policy, while allowing it for soft clients, is not something the product offers. -Bob _________________________________________________ SunRay-Users mailing list [email protected] <mailto:[email protected]> http://www.filibeto.org/__mailman/listinfo/sunray-users <http://www.filibeto.org/mailman/listinfo/sunray-users> _______________________________________________ SunRay-Users mailing list [email protected] http://www.filibeto.org/mailman/listinfo/sunray-users
_______________________________________________ SunRay-Users mailing list [email protected] http://www.filibeto.org/mailman/listinfo/sunray-users
