How do you use a SID800 with multiple certificates and Windows credential provider?
Originally Published: 2010-04-06
Article Number
Applies To
RSA SecurID SID800 Authenticator (USB token)
Microsoft Windows 7 Professional
Microsoft Windows 2008 Server
Microsoft Windows Credential Provider
Microsoft certificate-based logon
Issue
Only one certificate on the SID800 is being seen at logon screen
SID800 with two valid certificates from a Windows 2003 CA. When authenticating to a system, only the certificate marked as default in the RSA Control Center is displayed. How do you configure the system to display both certificates for the user to choose from?
Resolution
A Microsoft GPO policy to show all certificates at logon needs to be updated.
http://technet.microsoft.com/en-us/library/ff404287(WS.10).aspx?ppud=4
Update these GPO settings:
Force the reading of all certificates from the smart card
Filter duplicate logon certificates
Or by registry:
You should see two logon tiles, one for each certificate.
Related Articles
How to determine which firmware version is on an RSA SecurID SID800 authenticator Number of Views Intermittent blinking of the RSA SecurID SID 800 token Number of Views How to disable smart card credential provider on Windows 2012? Number of Views 'Caught Exception in Report.fill(): Could not initialize class sun.awt.X11GraphicsEnvironment' running or viewing Reports … Number of Views SID800-based Token fails with the Error - “Authentication failed because tokencode could not be read from connected token”… Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
