We have a customer testing IGEL OS 11 with Active Directory and seems that if domain controller is powered off doesn ́t connect with domain credentials. Is possible that IGEL device has local credentials in case Domain controller was not available and allow access?
Same customer has seen that enabling access with Smartcard, domain credentials access is not configurable on that endpoint. Is correct? Any way to solve it?
Hi, that‘s right, and a bit on purpose but a local login might happen at least when UMS is not available, let me check. Is Shared Workplace in use?
Does this situation happens this often?
Which kind of Smartcards are they using?
At the moment he has no Shared Workplace and tested a few times.
He is testing with IGEL smartcard
No, I meant, is this happening such often that the DC is gone and not reachable?
Customer talk with final customer for details and he told me that they will not use domain credentials.
They will authenticate with:
VPN with OTP to access customer network (Cybersecurity National Institute)
Smartcard: He will use several IGEL UD3 devices, but he will have some converted PC/laptops. He wants to use the same for all customers. Is there any 3rd party device that can read IGEL smartcards?
IGEL Smartcard needs to configure password and user data locally. Is there any way to do it all remotely from UMS to avoid devices movement?
Our builtin Reader in an Omnikey 3×21, our Card SLE4428
In the past we recommended Cherry ST-1044U
Smartcard personalisation: I will ask, but not from what i recall… I mean, we could script it, but since Smartcards are a security sensitive topic, I wouldn‘t recommend it😬
Could he use HID Omnikey 3121 USB with IGEL cards?
It might, but a test would be better!
OK. Confirm with your colleagues if anyone tested any external reader with your cards.
Searching on kb I found this note:
and this related to configure Smartcards from UMS:
Is possible to configure a smartcard as “Master” with Administrator user that works with all devices? Basically to use in case of any user loses his card.
Wasn’t aware of that article (supported smartcard readers)! Great!!
You can configure a generic user yes!
Continue reading and comment on the thread ‘Is possible that IGEL device has local credentials in case Domain controller was not available and allow access?’. Not a member? Join Here!
Learn more, search the IGEL Knowledge Base
Ask a question or comment on the above message thread?Join or log in to the IGEL Community to ask us anything and meet other IGEL customers, partners, and EUC enthusiasts.
Submit a question, or Join Today!