Learn about PKI smart card usage

What is a PKI smart card

Public Key Infrastructure (PKI) smart cards provide a strong security method for organizations that want to use single sign-on (SSO) to authenticate employees. Single sign-on means that users can use the same credentials to access connected systems within their organization. The personal identification data are embedded on the smart card chip.

Not only personal information but also one or more smart card certificates and the encrypted private key of the user are part of the smart card. The public key and the username (UPN) are stored on the smart card certificate. The PKI smart card can be protected with a PIN or password which provides additional protection against unauthorized access by others.

Example of a PKI smart card in reader

The PKI smart card chip contains software to do the following:

• Encrypt and decrypt data, for example, by means of keys.

• Check the revocation status of certificates.

• Verify the entered PIN or password.

• Block the PKI smart card, for example after too many failed PIN or passwords entry attempts.

A PKI smart card can have different smart card certificates and private keys, so that multiple users can use the smart card. When there are multiple users, the login window shows a drop-down list to select the user name.

PRISMAsync Print Server uses the domain and user group configuration to decide if a user can access the printer.

The PKI smart card usage leaves the existing PRISMAsync Print Server login method in place. So, when a PKI smart card reader is attached, users without a smart card can also have access to the control panel.

Before users can use their PKI smart cards to access the control panel you need to configure the PKI smart card usage in the Settings Editor.

PKI smart card readers supported by PRISMAsync Print Server

PKI smart cards supported by PRISMAsync Print Server

More information

• Learn about authentication of PKI smart cards

• Learn about NFC smart card usage