Learn how to a build a cloud-first strategyRegister Now


Getting Smart Card credentials on the client side

Posted on 2007-08-07
Medium Priority
Last Modified: 2013-11-05
I am a developer on a webapplication sitting on a server using/having/implementing SSL and is behind a reverse proxy.  I am attempting to make it recognize smart card certificates to verifies a user instead of a username/password.  The little tidbit that it is behind a reverse proxy is temporary but presents the problem for now.  The certificates cannot communicate across the reverse proxy to the server.  I don't know why and there's nothing I can do about it,  it's not our server.  That being said, is there any way to pick up the credentials on the client side?  I know very little about this.  I'm imagining not as this would probably present a security problem.  I'm thinking as I write this that the web app must sit on a server that is either getting information from or is the server administering the activeclient setup.
Question by:HyperBPP
  • 2

Expert Comment

ID: 19654121
Can the (reverse) proxy understand and pass on certificates? Perhaps it is just not configured to accept anything but username/password as authentication.

Author Comment

ID: 19654635
No it cannot understand and pass certificates.  I've been this an issue that they've yet to find a solution for.  Was primarily curious about what could be picked up on the client side.


Accepted Solution

ravs120499 earned 2000 total points
ID: 19660680
Verifying credentials on the client side doesn't help, as the authentication has to be with the server, I presume. You *can* perhaps code your application so that the smart card credentials authentication becomes part of the application rather than the web server infrastructure (depending on what programming api you have with the smart cards). But that is less than ideal.

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
Your business may be under attack from a silent enemy that is hard to detect. It works stealthily in the shadows to access and exploit your critical business information, sensitive confidential data and intellectual property, for commercial gain. T…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question