Smartcard logon problems

You are able to logon to Windows but when logged on you cannot use “Run as another user”
Error Message: A specified logon session does not exist. It may already have been terminated

Reason: Certificates on the smart card is not propagated to “Personal” certificate store (mmc.exe)

Cause:
1 .Third party software such as “NetID” has been installed. Sometimes it is not possible to uninstall in a correct way.
2. The policy Policies\Windows Setting\Administrative Templates\Windows Components\Smart Card “Turn on certificate propagation from smart card” is set to Disabled.

Soloution:
1.Import the smart card certificates manually to CurrentUser/Personal Store.
2. Change the policy

 

This entry was posted in Active Directory, PKI and tagged , , . Bookmark the permalink.