Security

Looking for some fun ways to get more out of your your Smart Card deployment? If so have you tried……?

  1. Use Smart Cards to login to your Servers via Remote Desktop
  2. Use Smart Cards with the PowerShell Get-Credential Commandlet
  3. Use Smart Cards with your Firewall for single sign on
  4. Use Smart Cards to login to IIS Web Applications (just a box to tick and a radio option to select)
  5. Store multiple identities on your Smart Card and assign different (and perhaps more complex) PINs to the identities

Have a look at the screen shots below for some more details…

If you are looking for a free tool to manage some of the more intricate features of the Gemalto IDPrime .NET and MD cards then the Mini-Driver Manager (downloadable from http://www.gemalto.com/products/dotnet_card/resources/development.html) may well fit the bill. However it has one small downfall in that out of the box it only allows you to manage cards with the Admin Key set to 48 0s or 48 Fs with neither option being much use to anyone once they have changed the Admin PIN.

Luckily these values are only set in a INI file so its pretty easy to change them to anything else.

Please note that this guide uses a feature in Notepad++ to elevate an application to have local Admin access, you can download Notepad++ from https://notepad-plus-plus.org however you could also use plain old Notepad you’ll just need to launch it as an Administrator and browse to the INI file within Notepad.

On with the guide!!

So after meaning to play with Smart Cards in greater detail for some time we’ve just received a set of cards and accessories from Smartcard Focus (http://www.smartcardfocus.com/) including….

  • Gemalto GemPC Shell Token V2 (IDBridge K30) (a USB dongle style Smart Card reader which you can see in the screen shot sequence below)
  • Gemalto IDPrime .NET smartcard – SIM cut (to go in the IDBridge K30)
  • Gemalto IDPrime .NET card – just your standard Smart Card
  • Omnikey 3121 – just your standard Smart Card reader

One of the first things I wanted to do was get PIN complexity and policy defined; the chaps over at Gemalto provide a number of tools which can be used to manage the cards which can be downloaded from the links below…

http://www.gemalto.com/products/dotnet_card/resources/development.html

http://www.gemalto.com/products/dotnet_card/resources/libraries.html

So time to get on with the guide (which also shows you which downloads are needed from the links)!

48 0s typed out… 🙂

000000000000000000000000000000000000000000000000

Last year just before Christmas I was very close to getting a Motorola Xoom Android Tablet PC but after much thought I changed my mind and decided that I would wait for Windows 8. Looking at the reasons below most of these relate to my nature as a IT professional and how I would use the tablet at both home, out and about and also at work.

Windows 8 is the match for my choice in phone and online services

I use Windows Live quite extensively covering Mail, SkyDrive (Photo storage/Documents), Contacts and Calendar – all of which integrate natively with my Windows Phone.

Microsoft has also demonstrated (video to the right) as to how these web services are built right into the OS in a way that is already familiar to me. This kind of continuity between devices can’t be matched and Android tablets (although Apple does very well with the iPhone and iPad offering a very similar user experience). Continue reading