Authentication is performed on the SMS server using Certificate Authority (CA) certificates and one or more ActivClient smart card readers. If there are multiple card readers with multiple cards inserted, a dialog box is displayed that enables you to select between card readers when you attempt to log in (Menu > File > Login) or during session unlocks. Users are then validated against their Active Directory accounts. The SMS matches a user's group in Active Directory with a group on the SMS to determine the user's privileges.
If the SMS is in CAC Authentication mode, all SMS users must log in using CAC. No local users are allowed to log into the SMS client.

Procedure

  1. Insert your Common Access Card (CAC) into the card reader.
  2. Type the IP address in the SMS Server field.
  3. Select the appropriate certificate from Certificates drop-down list.
  4. Click Login.