Find Answers

Filter Search Results
All Operating Systems:
All Products:
All Solution Types:
Ask a Question
Example: "Database could not be verified"  
Tips | Start Over | Solutions | Alerts | Patches | Defects  
Pages [Next]
CMS-XML How to setup SBM to use CAC/PIV SmartCard Authentication
In this document explains how to setup SBM to authenticate the CAC / PIV Personal Certificate against a trust store of trusted Certificate Authorities. NOTE: To watch a video of these steps, see KB S141238 .
CMS-XML How-To Setup CAC / SmartCard in SBM 11.2 and later
SBM 11.2 and later adds features to the Configurator that make setting up CAC / SmartCard much easier. This document will describe the new setup .
CMS-XML VIDEO: How to setup CAC / Smart Card client certificate authentication
Browser Setup : By default, IE will not prompt for the client certificate when there is only one installed in the browser. It may be helpful during initial setup to change this setting. It is under Internet Options > Security > Pick your zone > Custom Level > uncheck the option called "Don't prompt for client certificate selection when only one certificate".
CMS-XML Configuration changes required for Smart Card authentication when IIS is configured to proxy SBM requests
, and use the Advanced | Security settings in SBM Configurator to enable Client Cert SSL and configure it with appropriate certificates.
CMS-XML SBM remembers SmartCard login at login form
SBM Setup SSO + SmartCard with web services set to internal password. Override the Federation server URL to go to IIS on port 443.
CMS-XML Enabling TTRecorder while using Client Certificate Authentication breaks SmartCard login
There a few work arounds. Connect to Exchange mailbox using POP3 or IMAP instead of Exchange Web Services -OR- Install the Notification Server and MailClient on a different server.
CMS-XML Enabling Automatic Smart Card / Common Access Card (CAC) Log In
First, setup CAC / PIV / SmartCard for this older version. See KB S139159 .
CMS-XML Serena SSO/CAC Setup through port 443 Only
Note that in SBM 11.x, a feature was introduced under the Component Servers tab of the Configurator where you can simply check a box labeled "Use IIS to proxy all server requests" to configure SBM to do this without needing to manually implement the changes below. This article is valid for CAC / PIV / Certs stored in the user's Windows profile and other Smart Cards . Description of Issue
CMS-XML CAC/PIV/Smart Card: When users try to login, they get error "Invalid User ID or password"
When initially setting up CAC, if everything is not completely finished, users will get the following error after clicking on the SmartCard Login button: Invalid User ID or password
CMS-XML IIS 8.x rejects client certificates (or Smart Card) with 403.7 or 403.16 error (Login page gives "Transport error: 403 Error: Forbidden")
Changes in IIS 8.x can cause 403.7 or 403.16 client certificate errors that did not exist in the IIS 7.x setup .
Pages [Next]

Welcome kb sso

My Recent Searches

Search Feedback

Are we answering your questions?

Additional Assistance

  • Submit a Case Online
  • FAQs