Task to perform |
In classic administration mode, you must have: |
In advanced administration mode, you must have: |
Disabling temporarily smart cards |
"Smart card administrator" and at least "Security object administrator" or "access" or "rights" |
"Token: Modification" and "Directory: Browsing" |
Sending smart cards to a blacklist |
"Smart card administrator" and at least "Security object administrator" or "access" or "rights" |
"Token: Blacklist" and "Directory: Browsing" |
In this section:
You can temporarily disable a smart card (when a user forgets his/her card, for example). The temporary deactivation allows you to make a smart card disabled but without deleting its assignment.
From the Smart Card panel
From the Directory panel
When a smart card is blacklisted, it is no longer usable. It is possible to remove a card from the black list and to assign/format it again to make it usable again.
|
NOTE: If the card is removed from the black list from the EAM console, it may not be possible to format it (the PUK is no longer known by EAM); you are advised to format the card whereas it is blacklisted. |
Procedures
From the Smart Card panel
From the Directory panel
|
NOTE: To get more information on the administrator who performed this operation and the date when it occurs, just click the Blacklist tab. |
When a user has forgotten, lost his/her smart card or when his/her smart card has been stolen, you can assign him/her a loan card. In this case, the principal card of the user is deactivated: a user can only have one active card at a time. The assignment procedure is described in Section Modifying authentication parameters of an assigned smart card.
© 2021 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy