x.509 certificate auth schemes Support for PIV/CAC cards

Document ID : KB000045357
Last Modified Date : 14/02/2018
Show Technical Document Details

Introduction: 

Support of PIV/CAC cards with X509 Cert Authentication scheme 

 

Question: 

** Q1 --> Do we support PIV/CAC cards and using a pin code with X509 cert Authentication ? 

** Q2 --> is there any specific configuration to be done on the agent level do we have any docs that describe this ?

 

Answer: 

** Q1 --> Do we support PIV/CAC cards and using a pin code with X509 cert Authentication ? 

Answer Q1 --> yes PIV/CAC cards will work with  X509 cert Authentication scheme. The web server is responsible for validating the PIV card and PIN . 

                      Siteminder Web Agent gets the cert details from web server.

 

** Q2 --> is there any specific configuration to be done on the agent level do we have any docs that describe this ?

Answer Q2 --> its not much different from regular cert , we do not have any special doc . 

                      PIV card is a physical card that stores a x509 cert so there is no special config at web agent level.

      Card reader attached to the system reads the card and passes the cert to the browser.

Additional Information:

N/A