English dropdown-ico

HP (Hewlett-Packard) Smart Card manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24

Go to page of

Similar user manuals

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of HP (Hewlett-Packard) Smart Card, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of HP (Hewlett-Packard) Smart Card one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of HP (Hewlett-Packard) Smart Card. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of HP (Hewlett-Packard) Smart Card should contain:
- informations concerning technical data of HP (Hewlett-Packard) Smart Card
- name of the manufacturer and a year of construction of the HP (Hewlett-Packard) Smart Card item
- rules of operation, control and maintenance of the HP (Hewlett-Packard) Smart Card item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of HP (Hewlett-Packard) Smart Card alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of HP (Hewlett-Packard) Smart Card, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the HP (Hewlett-Packard) service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of HP (Hewlett-Packard) Smart Card.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the HP (Hewlett-Packard) Smart Card item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    1 Implementati on of an A cti vC ar d® smar t car d soluti on on HP CCI Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2 Prerequisites . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2 Refere[...]

  • Page 2

    2 This w hite paper disc usses the impl e mentation of A ctivC ard® smart car ds on HP Consoli dated Client Infr astru cture (C CI) . T his white paper is no t intend ed as a compr ehensi ve o vervi ew of A cti vCard smart card tec hnology . NO TE: T he images and instructi ons in this white pa pe r use Mi cr osoft W indow s XP e; ho we ver , HP a[...]

  • Page 3

    3 • Blade Enclo sure . • HP e -class blade enc l osur e . • Blade PC s • HP bc1000 blade PC running Mic r osoft W indow s XP SP2 w/HP SA M blade service ins talled. • HP bc1500 blade P C running Mi cr osoft Windo w s XP SP2 w/HPS AM blade servi ce installed. • Clien ts • HP Compaq t5 000 ser ies thin cli ent running Mi cr osoft W indo[...]

  • Page 4

    4 Sof t war e co nfigu ratio n Conf igur e the follo wing items to set up a smart card so lution on CCI: 1. Certif icate Au thentication (CA ) servi ce 2. Gr oup policy settings 3. Middle war e running on a HP blade PC 4. Smart card c lient dr iv er St ep 1: Conf iguring a C ertifi cate Authenti cation (CA ) ser v ice Conf igur e a CA servi ce. T h[...]

  • Page 5

    5 4. T y pe a name for the ne w template in the Te m p l a t e d i s p l a y n a m e box . This ex ample use s CCI Smartcard Logon .[...]

  • Page 6

    6 5. Clic k the Request Handling tab . 6. Select or ty pe 1024 in the Minimum ke y size box . 7. Click t he CSP s button. 8. Select Reque sts can u se an y C SP a vailable on subject' s compute r . 9. Clic k the Secur ity tab.[...]

  • Page 7

    7 10. In the P e rmissions for Auth enticated Us ers bo x, in the Allo w column, selec t Re ad and Enroll . Y ou have completed c reation of the template . 11. Cop y the CCI Smartcard L ogon cer tifi cate template in to the C ertificate T emplates f older under the cer- tifi cate server . a) Expand the Certifi cation A uthority obj ect in the MMC y[...]

  • Page 8

    8 d) Select Ne w > Certifica te T emp late to I ssue . 12. Selec t the template , and then cli ck OK to import the template.[...]

  • Page 9

    9 St ep 2: Gr oup polic y setting Apply the f ollow ing smart card gr oup polic y settings to the computer through a user poli cy setting or thr ough a computer policy s etting: • Compu ter Conf igur ationWindo ws SettingsS ecur ity SettingsLocal P olic iesSec urity Options - In ter- acti ve L ogon: Requir e smar t card , enable or disable . [...]

  • Page 10

    10 St ep 3: HP blade PC mi ddlew are conf igur ation The f ollo wing pr ov ides HP blade P C softwar e confi gurati on: • F or the purpo ses of this whit e paper , an HP CC I implementation w ith the hard war e and softwar e components listed in “R efer ence hard war e and softwar e ” on page 2 was u sed. • Install one of the f ollow ing Ac[...]

  • Page 11

    11 • USB CA C appr ov ed smart card reader (S CM Mic ros ystems S CR331 R eader) Dri ver : SCR3 3X2K.s ys, v ersi on 4.2 7 . 00.01 NO TE: Fo r Mic ro soft Windo ws CE .NET , y ou may need to cop y the dri vers f rom the f older whe re the y wer e installed ( Windo ws ) to the Hard DiskProgr am Files folder so the dr i vers w ill be wr it ten t[...]

  • Page 12

    12 d) In the ri ght pane, e xpand Smar t card readers . e) Select the ins talled smart card r eader . f) Under De vice status , v eri f y the mess age “This de vi ce is wo rking pr operly . ” 3. T o begin the enrollment f rom the blade P C side, open the R emote Desktop C onnection w indow b y click in g Start > All Programs > Accessories[...]

  • Page 13

    13 5. In the Local De vices area , select Smart cards . 6. Connect to the blade P C on whic h you w ill set up the smart card and log in as a domain-authenti- cated user . 7. V erify the Ac tivCar d icon is display ed in the sy stem tr ay . 8. Insert an unprogr ammed Acti vCard-compatible smart ca rd into the r eader . The Ac tivCar d icon in the s[...]

  • Page 14

    14 Initiali z ation of the smart car d using HP Ses sion A llocation Manager C lient (HP S AM Client) 1. P o wer on the thin c lient w ith the smart card r eader installed . 2. Open Dev ice Manager to v er if y that the dr iv ers fo r the card r eader ar e installed: a. C li ck Star t . b. Ri g h t - c l i ck o n My C om p u t er and select Manage [...]

  • Page 15

    15 6. Connect to the blade P C on whic h you w ill set up the smart card , and then log in as a domain- authenticated user . 7. V erify the Ac tivCar d icon is display ed in the sy stem tr ay . 8. Insert an unprogr ammed Acti vCard-compatible smart ca rd into the r eader . The Ac tivCar d icon in the s ystem tr ay change s fr om red to blue . 9. Se[...]

  • Page 16

    16 R equesting a certifi cate fr om the blade P C 1. Open Internet Explor er and go to the Certifi cation Server enr ollment W eb site. T h e addr ess of this W eb site was det ermined w hen the Certifi cation Serve r was se t up (see “Step 1: C onfi guring a Certif- icate A uthenticati on (CA) serv ice ” on page 4) . If y ou do not kno w the W[...]

  • Page 17

    17 6. If a war ning message display s about a potential sc ripting v iolation , pres s Ye s to continue w ith the cer tificate request. 7. After the s ystem gener ates the public and pri vate k ey s, the page to install the certifi cate display s. Select Install t his certifica te . This command installs the u sers ’s certificat e onto the smart [...]

  • Page 18

    18 T o ver i fy that the CCI SmartCar d Logon certifi cate fo r the user is installed o n the smar t car d: 1. Clic k the ActivC ard i con in the sy stem tra y to open the Acti vCard Gold utility . 2. In the ri ght pane, s elect the My C e r t if i c a te s icon. T he sy stem display s the username ID . 3. Select the u sername ID to v iew the ins t[...]

  • Page 19

    19 Usage cases Usage case 1 : User aut hent ication fr om client de vi ce to blade PC u sing RDP The f ollo wing s teps pr ov ides instruc tions fo r performing a f unctional te st of the CCI SmartCar d Logon cer- tifi cate: 1. Log out o f the RD P sessi on. 2. Open the Remot e Desktop Communi cations w ind o w and initiate a connecti on to the bla[...]

  • Page 20

    20 2. Open the HP S AM client w indow and initiate a connec tion to the blade P C. 3. Mak e sure a smart car d is installed in the reade r . The s y stem r equests the smart card P IN. 4. T y pe the PIN that y ou assigned . The user is logged into the blade P C. Usage cas e 3: Accessing s ec ure W eb site The f ollo wing s teps pr ov ide instr ucti[...]

  • Page 21

    21 4. In Internet Explor er , type the addr ess of a sec ure W eb site. 5. If th e sy stem displays security a ler t messag es, click OK . The LED on the car d reader indi cates when the W eb si te is accessing the smart card t o ver i fy whether the certific ate is appro ved for the sit e. 6. After the sec ur e W eb site display s, a lock ic on in[...]

  • Page 22

    22 4. In the Compa ny Name box , t ype the name f or the VPN connection (f or ex ample , Work ) , and then click Ne xt . 5. Select Do not dial t he initial connec tion , and then c lick Ne xt . 6. In the te xt box , type the host name or IP addr ess of the VPN tunnel , and then clic k Ne xt . 7. Select Use my smart card , and then c lic k Ne xt . 8[...]

  • Page 23

    23 2. Rig h t - c l ick o n t h e VPN connection icon and select Properties . Y ou can initiate the VPN connecti on after setting it up , as follo ws: 1. Start the VPN connecti on. 2. In Smar t card PIN , type the P IN, and then c lick OK . While est ablishing the VPN connection , the sy stem displa ys Verifying username and password and Authentica[...]

  • Page 24

    24 After the connecti on is established , the net w ork connection i con display s in the sy stem tr ay . Additi onal infor matio n F or mor e informati on about HP C onsolidated C lient Infr astru ctur e, see http://h71028.www7 .hp.com/ enterprise/cache/988 5-0 -0 - 22 5-121.html. F or mor e infor mation about A cti vCard , see http://w ww .ac tiv[...]