Versions Compared

Old Version 6

changes.mady.by.user Mikhail Yakovlev

Saved on

compared with

New Version 7

changes.mady.by.user Mikhail Yakovlev

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Control

Smart card usage control is carried out with Indeed Certificate Manager client Agent installed onto user workstations. The Control section defines the actions and message texts (optional) that are executed in case of violating the card usage rules. E.g. when a user connects his or her smart card to workstation of another user. The description of section parameters is given in table.

OptionDescription

Message to the user when the bound device and agent do not match

The message displayed to the user by Indeed CM Agent upon connecting a smart card to workstation disallowed by administrator.

If the value is not set, the message is not is displayed.

The action to be taken when the bound device and agent do not match

The action performed by Indeed CM Agent upon connection of a smart card to workstation disallowed by administrator. Possible values:

  • Write event
  • Lock user session, write event
  • Lock card, write event
  • Lock user session and card, write event
Enable user card binding

If enabled, Indeed CM Agent checks whether the smart card belongs to the logged on user.

Message to the user when the bound device and user do not match

The message displayed to the user by Indeed CM Agent upon connection of a smart card to workstation with another user session active.

If the value is not set, the message is not is displayed.

The action to be taken when the bound device and user do not match

The action performed by Indeed CM Agent upon connection of a smart card to workstation with another user session active. Possible values:

  • Write event
  • Lock user session, write event
  • Lock card, write event
  • Lock user session and card, write event

Timeout before locking the user session (sec.)

Period of time until user session is locked if this action is selected to be executed by Indeed CM Agent upon smart card usage rule violation. Possible interval is from 0 to 5 seconds.

User messages

The Indeed Certificate Manager Agent can notify users of successful execution of the following operations with their cards:

  • Lock user PIN
  • Change card administrator PIN
  • Revoke and initialization card

By default, the messages are not defined and are not displayed to users. To enable messages, switch to User messages section of the smart card usage policy and enter message texts.

Image RemovedImage Added