- Created by Mikhail Yakovlev, last modified by Daliya Agletdinova on Feb 20, 2024
Installing Axidian CertiFlow Middleware
Axidian CertiFlow Middleware components are installed on CertiFlow operator workstations and on user workstations.
Drivers and service utilities for the smart cards and readers to be used with Axidian CertiFlow should be installed onto all the user workstations. This software is not a part of Axidian CertiFlow installation package.
Middleware components to install are selected depending on the smart card type used in the company. For example, you need to install the CertiFlow.Gemalto.Middleware component to work with Thales (Gemalto) smart cards. Similarly, for Feitian smart cards you need CertiFlow.ePass.Middleware.
Run the CertiFlow.<name of the smart card type>.Middleware.<version number>.en-us.msi file from Axidian CertiFlow installation package (Axidian CertiFlow.Client directory) and perform installation, following the wizard directions.
Here is a table with vendor names, smart card models and client Middleware.
| Manufacturer | Smart card model | Middleware |
|---|---|---|
| ACS | ACOS5-64 | AxidianCertiFlow.ACOS.Middleware-<version number>.en-us.msi |
| Axidian | AirCard Network Smart Card | AxidianCertiFlow.AirCard.Middleware-<version number>.en-us.msi |
| Bit4id | ID-One Cosmo | AxidianCertiFlow.Bit4Id.Middleware-<version number>.en-us.msi |
| CRYPTAS | TicTok V2/V3 | AxidianCertiFlow.TicTok.Middleware-<version number>.en-us.msi |
Cryptovision | ePasslet Suite v3.0, JCOP V3.0 | AxidianCertiFlow.Cryptovision.Middleware-<version number>.en-us.msi |
| Feitian | ePass2003 (A1+, A2) BioPass2003 | AxidianCertiFlow.ePass.Middleware-<version number>.en-us.msi |
| HID | Crescendo C1150 Series Crescendo C1300 Series Crescendo C2300 Series | AxidianCertiFlow.HID.Middleware-<version number>.en-us.msi |
Microsoft | Local Computer Certificate Store User Certificate Store | AxidianCertiFlow.Registry.Middleware-<version number>.en-us.msi To issue Registry cards through Self-Service with writing certificates to the certificates storage of the computer and/or user, configure the appropriate group policy. |
TPM Virtual Smart Card (Microsoft VSC) - Virtual Smart Card Trusted Platform Module v.2.0 | AxidianCertiFlow.TPM.Middleware-<version number>.en-us.msi | |
Windows Hello for Business (WHfB) | AxidianCertiFlow.WHfB.Middleware-<version number>.en-us.msi | |
| RSA | RSA SecurID 800 | AxidianCertiFlow.RSA.Middleware-<version number>.en-us.msi |
Thales (Ex SafeNet and Gemalto) | SafeNet eToken PRO 32k SafeNet eToken PRO 64k eToken PRO Java 72K OS755 SafeNet eToken 5105 SafeNet eToken 5110 IDCore30B eToken 1.7.7 | AxidianCertiFlow.eToken.Middleware-<version number>.en-us.msi |
IDPrime MD 830 IDPrime MD 840 IDPrime MD 3810 IDPrime MD 3811 | AxidianCertiFlow.Gemalto.Middleware-<version number>.en-us.msi | |
| Yubico | YubiKey 5 Series | AxidianCertiFlow.YubiKey.Middleware-<version number>.en-us.msi |
Installing Axidian CertiFlow Client Tools
Axidian CertiFlow Client Tools is the component for unlocking the smart cards used for Windows authentication, both in online and offline mode and for unlocking the smart cards not used to login to the operating system.
Run the AxidianCertiFlow.ClientTools.<version number>.en-us.msi file from Axidian CertiFlow installation package (Axidian CertiFlow.Client directory) and perform installation, following the wizard directions. This component is installed to user workstations only.
Installing Axidian CertiFlow Agent
Axidian CertiFlow Agent is an additional component of the system, its installation and configuration are performed after the deployment and configuration of Axidian CertiFlow. This component is intended for remote management, status monitoring and control over the use of personal user authentication cards (USB tokens, smart cards). In automatic mode, using an agent at user workstations, operations are performed to lock and unlock, clean and change the cards administrator’s PIN; monitoring the cards status with recording information in the system log about the presence of locked cards in the system, connecting unregistered cards, attempts to enter an invalid PIN. If defined card usage rules are violated (say, card is connected to another user workstation), then the card or user session might be locked. The component is installed onto the workstations where the cards issued with Axidian CertiFlow are connected to.
Run the AxidianCertiFlow.Agent.<version number>.en-us.msi from Axidian CertiFlow installation package (Axidian CertiFlow.Client directory) and complete the procedure, following the wizard instructions. The Agent starts up automatically after installation.
Axidian CertiFlow Middleware, drivers and service utilities for the smart cards and readers to be used with Axidian CertiFlow Agent should be installed onto all the user workstations.
The parameters required to connect to Axidian CertiFlow server are configured during installation via Group Policy or Windows registry.
- No labels