Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Issues in authenticating File Encryption using Common Access Card (CAC)

    • Updated:
    • 19 May 2014
    • Product/Version:
    • Endpoint Encryption 5.0
    • Platform:
    • Windows 8 32-bit
    • Windows 8 64-bit
    • Windows Vista 32-bit
    • Windows Vista 64-bit
    • Windows XP SP3 32-bit
Summary
When registering a CAC, the SmartCard drop-down and OK button are grayed out.
Details
Public
To resolve the issue:
  1. Verify the following:
  2. Test a different card.
  3. Change Prefer GSC-IS over PIV End Point to "No" and reboot.
  4. Verify that the following policy settings are configured in Full Disk Encryption\Login for the group:
    • TokenAuthentication must be enabled.
    • TokenAuthentication\OCSP Validation must be disabled TokenAuthentication\Token PassThru = No.
    • Leave the Full Disk Encryption\Login\Token Authentication\OCSP Validation policy setting to "No".
    • Ensure that the Common\Authentication\Network Login \Domain Authentication policy setting is set to "No".
    • The domain and Smart Card authentication must not work together in the same policy group.
    • A one-time password must be set for new Smart Card users.
    • Subsequent authentications require the Smart Card PIN.
  5. Make sure that the card is fully inserted and that a CAC or a PIV card is being used.
  6. Ensure that the BIOS is up-to-date.
    Note: PCMCIA and serial readers are not supported.
  7. Register the card again.
    1. Assign the user an OTP on the PS under the device group where it belongs to, and then log on to the device with user name and OTP.
    2. Make sure that there is connection to the PS.
    3. Register the CAC on that device.
The user should be able to log into that device with the CAC/PIN.
Premium
Internal
Rating:
Category:
Configure; Install; Upgrade
Solution Id:
1103499
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.