Solved

Smart Card issues

Posted on 2013-11-10
17
2,832 Views
Last Modified: 2013-11-13
Hello,

I've recently installed Server 2012 R2 and I am looking to deploy smart cards for users to logon to the domain. However, I am having a few issues enrolling users. I get the following Error message, The smart card requires drivers, which are not present on this system. Im not sure what the problem seems to be.

I have a GemPC Twin smart card reader. Attached Is a screen image of the issue.

Regards

Error
0
Comment
Question by:matthewjnewton
  • 7
  • 4
  • 3
  • +2
17 Comments
 
LVL 11

Expert Comment

by:Gregory Miller
ID: 39637067
The smart card reader either requires another driver or it does not recognize the card you inserted. Are you able to read any cards from any client computer, looking beyond the authentication use?
0
 

Author Comment

by:matthewjnewton
ID: 39637074
I can't really test it on anything else as I am in the process of setting the smart card system up until I've hit this issue.
0
 
LVL 11

Expert Comment

by:Gregory Miller
ID: 39637088
OK, the card you have... Did it come with the reader, in the same box, that you have or did you get them separately? If they came together, you are simply missing drivers and probably need to hit the manufacturer website for updates. If they came separately, they may not work together or they need to be initialized by the reader first.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 

Author Comment

by:matthewjnewton
ID: 39637090
Nope, I purchased the card separately. I have a brief description of the card its from Smart Card Focus. The item is described as GemClub Memo.
0
 
LVL 11

Expert Comment

by:Gregory Miller
ID: 39637096
The cards are like an unformatted disk. I will bet if you dig in you will find you need to initialize it first so it is usable. I have never set one up from scratch.
0
 

Author Comment

by:matthewjnewton
ID: 39637113
Do you know of any software that will help me format this card ?
0
 
LVL 11

Expert Comment

by:Gregory Miller
ID: 39637151
The reader should unless it is only a reader. Like I mentioned, I have not set one up from scratch before.

Did the reader come with any drivers and did you install those drivers yet?
http://support.gemalto.com/index.php?id=pc_usb_tr_and_pc_twin

Everything you ever wanted to know about smart card but were afraid to ask...
http://www.smartcardalliance.org/pages/smart-cards-intro-standards

Format utility (use at own risk)
http://smart.software.informer.com/download-smart-card-format-utility/
0
 

Author Comment

by:matthewjnewton
ID: 39637251
I believe its a reader writer, I have the latest drivers I'm still not sure about formatting the card though. I think more experts are required.
0
 
LVL 44

Expert Comment

by:Jackie Man
ID: 39637935
Is  Server 2012 R2 a physical server or just a Virtual machine?
0
 

Author Comment

by:matthewjnewton
ID: 39638144
Physical Machine my Server 2012  R2
0
 
LVL 44

Accepted Solution

by:
Jackie Man earned 500 total points
ID: 39638191
I think that you have got the wrong type of smart card.

See the article below for details.

http://www.edutech.me.uk/technical/configure-server-2012-ca-for-smartcard-authentication/

You need IDPrime .NET card if you do want to enroll the Enrollment Agent Certificate without any middleware.

Different kinds of smart cards are listed below.

http://smartware2u.com/category/1-contact-smart-cards.aspx
0
 

Author Comment

by:matthewjnewton
ID: 39638246
I feared that might of been the case. Just to confirm on smartware2u.com, they have two types of cards.

The Gemalto IDPrime.NET 510
And Gemalto IDPrime.NET 5500

I take it the first one is acceptable ?
0
 
LVL 44

Expert Comment

by:Jackie Man
ID: 39638344
I take it the first one is acceptable ? YES, unless your project is to add Biometrics Match On Card authentication for the logon.
0
 
LVL 20

Expert Comment

by:Iain MacMillan
ID: 39638348
The correct Gemalto drivers are needed for the smart card AND the smart card you are using, usually supplied in the hardware box in a white CD case (eSigner).  We use similar ones for our finance team -- they can be a pain to setup and worse when the bank switch USB card readers without telling me and expect them to work by magic.

you need the reader drivers first, then add the smart card drivers just after (in between restarts), when you connect the reader, let the server pickup the device first, and then use Device Manager to verify its connected and running normal (no yellow !).  Then connect the smart card and then run the Gemalto Toolbox (sometimes the Classic toolbox depending on driver version).  This will show you the options the the card supports and what you can do with them.

Or team is using the current Classic Client v6.0 SP1 (6.01.001.001) and eSigner v4.1.9.001.  Gemalto will install a GemPcCCID package also should be v2.0,1 or better , again depends on model of readers and cards.
0
 
LVL 63

Expert Comment

by:btan
ID: 39638632
In general, a particular CSP is required to be present on a given machine, either to enrol certificates (strictly, to generate key-pairs) to that CSP, or to be able to use certificates (especially on smart card) generated using that CSP. It is not required to be present on the Certificate Server, not for the purpose of generating the certificate, that is. If you try to log on to a machine using a smart card generated using a CSP which is not present on that machine, you get an error: The card supplied requires drivers which are not present on this system. Please try another card. This applies both to a local interactive logon, and also via remote desktop – it would be rather surprising if the latter were not the case.

You may want to try the Gemalto Smartdiag utility software that checks your configuration regarding all the Smart Card Components.

See how this helps using the tools
http://www.experts-exchange.com/Hardware/Peripherals/Printers_Scanners/Q_22490502.html

diagnose - http://support.gemalto.com/index.php?id=classic_client_troubleshooter

tools - http://support.gemalto.com/index.php?id=download_tools
0
 

Author Closing Comment

by:matthewjnewton
ID: 39644010
All sorted and working correctly. Thank you experts
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Examines three attack vectors, specifically, the different types of malware used in malicious attacks, web application attacks, and finally, network based attacks.  Concludes by examining the means of securing and protecting critical systems and inf…
Knowing where your website is hosted is as important as the features you receive, the monthly fee, and the support you receive. Due diligence should be done when choosing your next hosting provider.
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

790 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question