Avatar of finance_teacher
finance_teacher
 asked on

Windows Server 2016 -- convert to "SmartCard" logins ?

I already have an Active Directory Windows Server 2016 home test server setup, but now want to change my few test Windows 10 Pro clients to use SmartCards

What URL do you recommend showing a step-by-step on how to setup SmartCards in Server 2016 only for CLIENTS, NOT for logging into the server as "user=DAadmin" since I want to still be able to login to the server without a SmartCard ?

I found https://malwaretips.com/threads/how-to-protect-your-head-less-home-server-with-smart-card-authentication-and-a-yubikey.71078/, but think there might be something better
SecurityActive DirectoryOS SecurityMicrosoft Server OSWindows 10

Avatar of undefined
Last Comment
btan

8/22/2022 - Mon
arnold

Commonly you need an CA in your environment. Then each user would request and get a certificate that will be installed on the smartcard.
See the following as a reference...
https://blogs.msdn.microsoft.com/edutech/certificate-services/configure-server-2012-ca-for-smartcard-authentication/
If you do not have your own CA
see https://support.microsoft.com/en-us/help/281245/guidelines-for-enabling-smart-card-logon-with-third-party-certificatio
ASKER CERTIFIED SOLUTION
btan

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes