Smartcard Logon to Windows Machines - without the requirement of a domain controller!
The new Aloaha Smart Login (Credential Provider) represents one of the most dramatic changes in the Windows Vista/7 logon screen, making it much easier to implement new user authentication scenarios that are supported by the OS.
To be able to logon via Smartcard to a windows machine requires usually the machine being a member of a domain. With the Aloaha Credential Provider that is not required - you can also do a card logon to stand alone machines!
The logon screen is the first thing users see when they turn on the computer.
The function of the Aloaha Credential Provider is to supply the OS with logon credentials. The logon credentials are saved encrypted on the local hard drive. In case the user uses the Aloaha Crypto Card the credentials are additionally saved encrypted on the card itself. When the user now types in Username, Domain\Username and Card Pin the Credential Provider will decrypt the locally saved credentials and pass them to the OS.
Please note that you can leave the fields empty. In that case Aloaha will use the most suitable credentials found on the smardcard.
To save an encrypted password please use the included GUI or just type into the 2nd field setpass: followed by the password. For example setpass:letmein. Aloaha will then encrypt the password with the certificate of the smartcard and save it locally. In case the Aloaha Cryptocard is used the credentials will also be saved encrypted on the card itself.
There is also a mechanism to synchronise the encrypted credentials across the network. Just create a registry key HKEY_LOCAL_MACHINE\SOFTWARE\Aloaha\CSP\RemoteUserPass pointing to a file in the network or an URL. For example the content could be \\192.168.0.127\download\UserPass.ini or http://192.168.0.127/download/UserPass.ini. Such an entry would mean that in case Aloaha does not find locally encrypted credentials it will look for them in the file specified in RemoteUserPass.
One frequently used scenario is the secretary functionality. A manager could insert his secretary’s card into the card reader, user the setpass: command and thus allowing the secretary to logon to his machine WITHOUT revealing his valuable credentials.
- Windows Vista/7, Windows 2008/Windows 2008R2
- Any Aloaha supported Smartcard or Aloaha Crypto Card
- instead of a Smartcard you can also use your plain USB/Memory Stick
Signed and verified by Microsoft
Windows Vista/W7/2008(r2) compliant
includes Aloaha Smartcard Connector
includes Gina for XP/2003
Plain USB Sticks supported as Logon Token
Qualified Signature Cards supported
protected against DLL hijacking
all binaries digitally signed
Plug & Play
Should you require an evaluation key or should you have any questions please do not hesitate to contact us via the form below
The Aloaha Smart Login packages comes with a Windows Gina for Windows XP, a Credential Provider for Windows Vista and Windows 7 which enables you to log into Windows systems or authenticate to websites.