Home Sitemap Feedback About... Print
Custom Search

IT Troubleshooting

Security: Smart cards

General info

  • Download The Secure Access Using Smart Cards Planning Guide
  • 909520 - Description of the software update for Base Smart Card Cryptographic Service Provider
  • 814394 - Certificate requirements when you use EAP-TLS and PEAP with EAP-TLS
  • 834432 - How to access a network resource that requires username and password authentication when your user account requires a smart card for interactive logon
  • 834875 - Update for the "Interactive logon: Require smart card" security setting in Windows XP

Terminal Server specific issues

These links are 2003 / 2008 specific, since Smart Card Redirection is not supported on Windows 2000 Terminal Server.

Vista spedific issues

  • 935576 - After you use a smart card certificate to establish a remote access connection, you cannot connect a Windows Vista-based computer to a shared resource in a foreign domain
  • 943356 - Outlook 2007 prompts you for your credentials when you connect to a LAN with a smart card
  • 948088 - Misleading message when you remove a smart card in a RDP session on a Windows Vista-based computer: "The card supplied was not recognized"
  • 948927 - Error message when you use SmartCard-only authentication to log on to a Windows Vista-based client computer in a wireless network environment: "Cannot connect to <SSID>: Please contact network administrator"
  • 951373 - On a Windows Vista-based computer, the Smart Card Resource Manager may stop responding if a USB hub is disconnected from the computer while an application is communicating with a smart card reader

XP spedific issues

  • 307085 - "The Smart Card Is in Backwards" Error Message Although No Smart Card is Inserted
  • 323931 - User Token Expires When You Log on by Using a Smart Card for a Long Time
  • 810186 - "This Device Cannot Find Enough Free Resources" Error Message After You Install Gemplus PCMCIA 400 Smart Card Reader
  • 824133 - Secondary Certificates on a Smart Card Are Not Propagated to the User's Local Certificate Store
  • 825762 - Smart Card Logon for a Remote Access Connection Is Authenticated When You Use an Incorrect Personal Identification Number
  • 826481 - You Can Log On by Using CTRL+ALT+DEL Even Though This Keyboard Shortcut Has Been Disabled by Local Policy
  • 832082 - Smart card stops functioning or you cannot access the local registry when you upgrade from Windows 2000 Server to Windows XP SP 1 or earlier
  • 835746 - A delay may occur before the logon text changes to "Insert card or press Ctrl-Alt-Delete to begin" when you use a smart card reader with a Windows XP-based computer
  • 843541 - Your computer stops responding when you use a smart card to log on to Windows XP
  • 883529 - Removing a smart card immediately after you log off a Windows XP-based computer may cause the computer to stop responding
  • 885423 - The network provider may not function as expected on your Windows XP-based computer
  • 887535 - A user may log on successfully after a smart card certificate is revoked or after their user account is disabled in Windows XP
  • 890837 - You are prompted to press CTRL+ALT+DEL to unlock your computer when you use a smart card to log on to your Windows XP-based computer
  • 890937 - Computer authentication cannot complete successfully when you use a smart card to log on to a wireless network in Windows XP
  • 891849 - You receive "The system could not log you on" error message when you use a smart card to log on to a Windows XP Professional-based computer
  • 893226 - A user receives an "Unable to log you on because it is required that you use a smart card" message when the user tries to log on to your Windows XP-based computer by using Remote Assistance
  • 893376 - Stack corruption occurs if you remove and insert a smart card during a user log on process in Windows XP Service Pack 1 or Windows XP Service Pack 2
  • 894069 - You receive the Change Password dialog box when you try to use a smart card to log on to a Windows Server 2003 domain in Windows XP Professional
  • 895325 - Lsass.exe crashes soon after you log on to a computer that is running Windows XP Service Pack 2 (SP2) by using a smart card
  • 906681 - A user can log on to a Windows XP-based computer by using a user name and a password, even though the "Smart card is required for interactive logon" user account property is set - XP preSP3 hotfix
  • 910682 - After you remove a smart card from a Windows XP-based computer, you are not logged off, or the workstation is not locked
  • 923401 - Terminal Services session stops responding when you use a smart card to log on to a Terminal Services server from a Windows XP-based client computer
  • 928269 - The "Smartcard Removal Behavior: Force Logoff" Group Policy setting does not work together with the "Remove Lock Computer" Group Policy setting on a computer that is running Windows XP Professional
  • 939850 - After you use a smart card to unlock a Windows XP-based computer, you are prompted for authentication when you access resources that require NTLM authentication
  • 942694 - A Windows XP Service Pack 2-based destination computer may stop responding after you log on to it by using an RDP session and a third-party smart card

2003 Server specific issues

  • 313629 - Custom Smartcard Template Is Not Available on the Smart Card Enrollment Station
  • 330228 - Issue with Multiple Smart Cards and Smart Card Certificate Renewal
  • 811943 - Gemplus Smartcard Drivers Are Not Included in Windows Server 2003
  • 826817 - Certificates other than logon certificates on a smart card are not propagated to the local certificate store of the user in Windows Server 2003
  • 832026 - "Local Policy of This System Requires You to Logon Using a Smart Card" Message Appears When You Try to Log On to the Server
  • 889505 - Services and scheduled tasks cannot log on if a smart card is not present in Windows Server 2003
  • 892424 - Passwords may not be maintained in an environment that contains both Windows 2000-based computers and Windows Server 2003-based computers
  • 909539 - A USB smart card reader that is connected to a Windows Server 2003-based computer stops responding
  • 919922 - A universal serial bus smart card reader that is connected to a Windows Server 2003-based computer may not detect the smart card
  • 899419 - You may receive a Stop error message when you use the SCardControl function to transfer lots of data to a USB smart card reader that is on a Windows Server 2003 Service Pack 1-based computer
  • 817971 - The option in the Authentication dialog box to connect to the Exchange server by using a smart card is not supported in Outlook 2003
  • 920209 - Description of the new feature in Exchange Server 2003 that supports Smart Card authentication to Outlook Web Access

Windows 2000 specific issues

  • 295766 - Smart Cards Do Not Support Strong Private Key Protection
  • 281245 - Guidelines for enabling smart card logon with third-party certification authorities
  • 255681 - "0x800B0112" Error Message When You Enroll a Smart Card User
  • 273610 - You Receive Error "0x80090004" While You Create a Smart Card Certificate Request
  • 843056 - The Windows 2000-based computer shuts down if you remove a smart card immediately after you log off the Windows 2000-based computer
  • 892047 - Your computer locks when you unplug a USB smart card reader in Windows 2000 with Service Pack 4
  • 892424 - Passwords may not be maintained in an environment that contains both Windows 2000-based computers and Windows Server 2003-based computers
  • 896157 - When you try to force interactive smart card logons by using a Group Policy setting, the setting does not work on Windows 2000-based client computers
  • 901107 - A Windows 2000 Server-based computer no longer recognizes a USB smart-card reader after you disconnect and then reconnect the smart-card reader
Copyright ? 2002-2008 Vera Noest