Smart Card Authentication Configuration | Parallels Blog

What is Smart Card Authentication?

Smart Card Authentication – Smart cards are small plastic cards, similar to credit cards with an embedded microchip that can be set up to store user authentication information. Organizations worldwide are adopting strong authentication solutions to validate an individual’s identity before providing access to computer networks, systems and applications. The smart card chip can store authentication information for a specific user such as PIN. This makes the smart card a perfect solution to security conscious businesses.

When users insert their smart cards through the smart card reader, the card implements multiple factors of authentication which secures the threat of hackers gaining access to sensitive applications, desktops and data stored in a datacenter.

In this guide we will walk through a 4 stage setup procedure to use “smart card authentication” with a Parallels Remote Application Server environment.How to Configure a Smart Card Authentication

Stage 1: Smart Card Setup Prerequisites

Before Parallels Remote Application Server is able to authenticate users with smart cards, the system must be configured correctly according to the prerequisites listed below.

Note: The configuration of these prerequisites may vary depending on the smart card vendor.

Stage 2: Test the Setup

After the prerequisites are configured, a test is required to verify that smart card authentication configured in Stage 1 has been set up correctly. This test will attempt to authenticate with the RDP server from a Windows machine using smart card.

How to Configure a Smart Card Authentication

How to Configure a Smart Card Authentication

How to Configure a Smart Card Authentication

How to Configure a Smart Card Authentication

How to Configure a Smart Card Authentication

If configured correctly the remote desktop session should be established without prompting for authentication. If the test is successful, move to Stage 3, otherwise revisit the configuration prerequisites outlined in Stage 1.

Stage 3: Configure Parallels Remote Application Server for Smart Card Authentication

Install the Parallels Remote Application Server Publishing Agent on a Windows server joined to the smart card domain configured in Stage 1, point 1. The Terminal Server Agent should be pushed to the RDP server referenced in Stage 1, point 3. At this stage Parallels Remote Application Server will be set up to authenticate users via smart cards.

How to Configure a Smart Card Authentication

Stage 4: Configure Parallels Client

Smart card authentication is supported on the Parallels Clients for Windows and Linux. In this example the Parallels Client for Windows will be configured to authenticate with Parallels Remote Application Server via smart card.

How to Configure a Smart Card Authentication

How to Configure a Smart Card Authentication

How to Configure a Smart Card Authentication

How to Configure a Smart Card Authentication

How to Configure a Smart Card Authentication

Applications and desktops published from Parallels Remote Application Server are now listed. Click to access any of these resources without being prompted for credentials.

How to Configure a Smart Card Authentication

Congratulations! You have successfully logged in using smart card authentication.

Try a free 30-day trial of Parallels RAS today.


References

Smart Card Authentication: http://searchsecurity.techtarget.com/tip/Security-token-and-smart-card-authentication

Smart Card Authentication: Authenticate Clients Using Smart Cards | technet.microsoft.com

Smart Card Authentication: https://msdn.microsoft.com/en-us/library/windows/desktop/aa380142(v=vs.85).aspx

Smart Card Authentication: Understanding and Implementing Smart Card Authentication | tech-faq

Smart  Cards: https://en.wikipedia.org/wiki/Smart_card

Leave a Reply