I am working with a c#.net application right now where I have smartcard authentication working properly, by allowing users to pick their digital certificate and enter their pin. However I want to do away with allowing the user to pick their certificate and have one of their certificates picked for them automatically(every user has the same certificates). This would make it so that when a user tries to enter the site, they are simply presented with a pin prompt. Any ideas on how to go about doing this? All the users I work with use Internet Explorer 7 and have workstations with ActivIdentity and Tumbleweed.
Bypass choose a digital certificate and present user with pin prompt
1.1k views Asked by Ben At
1
There are 1 answers
Related Questions in SECURITY
- HTTPS configuration in Spring Boot, server returning timeout
- HSM ZKA control mask values
- OWASP Amass Subcommands
- Is there a need for BPF Linux namespace?
- Error when trying to execute a binary compiled in a Kali Linux machine on an Ubuntu system
- When sanitize/encode while implementing tags system like on SO
- spring security version in spring-boot-starter-security
- I am currently trying to implement a rudimentary firewall from a video I watched but the nimda worm detection is not working and i do not know why?
- Is it possible for `sudo` to fail temporarily with the correct password? Hacking suspected
- Is it viable proxying all my mobile apps requests, to some kind knowing that a request is coming from a secure source
- What abilities should I concentrate on while bug hunting, and how can I improve the quality of my bug bounty reports?
- System.ArgumentOutOfRangeException: I passed this error in every single program
- How to prevent users from creating custom client apps?
- Does server-side content security policy exist for youtube video player API, app, mod apks and website?
- Can we pass a hostname/IP address as a query string in a GET request in REST API
Related Questions in AUTHENTICATION
- Authenticate Flask rest API
- Sends a personalised error message from the back-end to the front-end with Nuxt-auth
- How to connect Spotify PKCE Authorization Boilerplate to Login-Button in React
- Laravel SPA auth with Sanctum
- _supabaseClient__WEBPACK_IMPORTED_MODULE_1__.supabase.auth.signIn is not a function
- My openID Authentication return 'You must have either https wrappers or curl enabled.'
- How to detect the Minimization of Custom Chrome Tabs on Android?
- Wordpress redirect to homepage after successfully logged in
- How to modify the prebuilt UI of authentication in aws amplify version 6 in React Native
- Creating a login system for my website, navlist not working?
- Receiving 400 bad request on post when customer auth handler is used
- Creating Azure B2B login system with Vue.js frontend & Python Django backend
- Gradio chatbot: how to export individual conversation histories?
- Set-Cookie header not forwarded by nginx to the client
- git asking for authentication when auth.json is present while running composer update
Related Questions in SMARTCARD
- Authentication with SmartCard sending a SOAPUI request
- How can I read these P1 and P2 parameters in smartcard reference data?
- Sign a pdf document using signature from USB token in python
- Is it possible Java Card supports NIO,like event-driven, reactor
- How to encode or write information into MIFARE DESFIRe ev2 that would act as id card with microtransaction functionality
- Issue with Secure Messaging in Android HCE App - Invalid Class (SW 6E00) during AID Selection
- Secure Channel Protocol 01 and 03 in Win32API DLL
- Change key of Desfire Card application
- STORE DATA APDU for PPSE info
- How to properly parametrize a SECP256K1 curve using the SE051 IoT SDK?
- C# http request mtls external private key
- Can't install .cap file on NXP P71D321
- nfcpy reading public information from contactless credit card with APDU commands
- How To Modify PKCS11 Object Value Attribute
- Yubikey 5: is it similar enough to smart cards for testing authentication?
Related Questions in DIGITAL-CERTIFICATE
- Digitally sign PDF by epass 2003 DSC usb token in website on ASP.NET C#
- What can i use equivalent to RSAPKCS1SignatureDeformatter in java?
- How do I create my own Extended validation certificate to display a green bar?
- How export all my certificates of software separately to a .pfx file?
- Retrieving Thumbprint same as the thumbprint seen using the DigitalSignature tab in properties
- Default Trusted root certification authorities for a new Microsoft Windows installation
- Client Validation for SSL certificate (root or end user certificate)
- How to do digital sign pdf document using X.509 certificate in asp.net?
- An invalid provider type has been specified
- How to convert OID of a code-signing algorithm from CRYPT_ALGORITHM_IDENTIFIER to a human readable string?
- How long is a document signed with a Digital Signature Certificate valid after the time it is signed?
- Manual validation of a X.509 certificate, bundled with a document in an XML
- Digital signature when only one person has public/private key
- X.509 Certificates gui program in java
- Why are digital certificates safe?
Related Questions in CAC
- Implementing (CAC) certificate authentication in ASP.Net Core Razor app (program.asp)
- X509 Client Certificate Header to Application
- React sessionStorage vs localStorage vs Cache
- Windows GIT using HTTPS client auth from smartcard token
- How to retrieve CAC/Smart Card info with reader?
- Django request for CAC (common access card)
- No longer prompted for CAC for localhost after upgrade to Windows 11
- Gov system: How to fix com_error: (-2147467259, 'Unspecified error', None, None)
- When I use Request.ServerVariables("CERT_SUBJECT"), what does the value C=US mean?
- CAC graph and calculation
- How to copy file from Salt-Minion [Windows] to Salt-Master. "cp.push module not working"
- How to get Node.Js to allow me to provide client cert with smart card/cac
- How to setup SQL Developer database connection when remote server uses smartcard authentication
- AGOL python web-tier authentication secured with PKI/CAC
- Apache Netbeans 12.2 with GIT and CAC
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Write a Java applet to do the job at client side using PKCS#11 wrapper or, if you can restrict your users to use IE, create and use an ActiveX. I have already done both. For ActiveX you have to have it digitally signed to declare it as a safe ActiveX.
It is not straight forward task but I found Java applet easier to implement. The downside is that JRE (Java Runtime Environment) should already be installed at client side and plays nice with the browser. User also has to grant permission to the applet to connect to his smart card at first run.