From the Directory panel
From the Smart Card panel
A smart card can be locked for many reasons:
To unlock it, several solutions are available depending on the cases, as shown in the following illustration:
The following sections describe the different methods that can be used to unlock smart cards from the Directory panel and from the Smart Card panel.
Task to perform |
In classic administration mode, you must have: |
In advanced administration mode, you must have: |
Unlocking to Forcing PIN |
"Smart card administrator" |
"Token: Force PIN" |
Unlocking by secret code |
"Smart card administrator" and at least "Security object administrator" or "access" or "rights" |
"Token: Modification" and "Directory: Browsing" |
Unlocking by SSPR |
"Smart card administrator" and at least "Security object administrator" or "rights" or "SSO Data Recover" |
"Self Service Password Request: Answer deletion", "Self Service Password Request: Challenge generation" and "Self Service Password Request: Reset attempt counter". |
Unlocking to extend the validity of smart cards |
"Smart card administrator" |
"Token: Modification" |
In this section:
By default, when the end user locks his/her smart card, an information message appears telling him/her to contact the administrator. You can complete this message with more details on the contact, according to the following descriptions:
Procedure
The information message is completed with the following line: "Your contact is <information you entered in the General tab>".
You can force a new PIN to unlock the smart card of a user who has lost his/her code or exceeded the maximum number of login attempts.
Procedure
© 2021 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy