You are viewing limited content. For full access, please sign in.

Question

Question

LF Web Client - SmartCard Authentication Issue

Web Client Laserfiche Version 10
Updated July 9, 2019
asked on July 8, 2019

Hi, 

I've an issue regarding the authentication of users when using their AD accounts on the Web client 10.4. 
It says that the password isn't correct. 

I've investigated further and i've tried to authenticate with the laserfiche client, and i could find some additional info. 

An error message shows up when authenticating. 
And it seems to be clear, it didn't read the authentication credentials in the SmartCard used by the users to login in their Workstations. 

Indeed, that customer doesn't allow the default username/password of windows but instead is using SmartCard auth with a PIN. 
At first sight, It doesn't seem that this configuration is supported, isn't it?

 

Does anyone has any thought/workaround ? 

 


See bellow the full error message : 
Error Code: 6000 
Error Message: Smartcard logon is required and was not used. (0x8009033E) 
Unknown error. [6000] 

------------ Technical Details: ------------ 

LF.exe (10.4.0.311): 
Call Stack: (Exception) 
CLoginDialog::AttemptLogin 
CLoginDialog::LoginToServer 
CLoginView::LoginHandler 
Call Stack: (Current) 
CLoginDialog::LoginToServer 
CLoginView::LoginHandler 
Additional Details: 
Exception: 0x80041770 [6000] (Smartcard logon is required and was not used. (0x8009033E)) (CLoginDialog::AttemptLogin at logindialog.cpp:796) 
Call History: 
CLoginView::LoginHandler 
CLoginDialog::LoginToServer 
GetOptionString ([GEDIECSettings]AdminNoPassword) 
GetOptionString ([GEDIECSettings]UserName) 
GetOptionString ([Settings]UseWindowsAuth) 
GetOptionString ([GEDIECSettings]UseWindowsAuth) 
CLoginDialog::AttemptLogin 
GetOptionString ([Settings]CheckServerVersion) 


Thank you in advance,
BR, 
Stive

0 0

Replies

replied on July 8, 2019

Are you having the users type their domain credentials into the login form on the web client?  I would imagine the smartcard requirement would prevent that from working.  If you set up an LFDS integration, I think that could work.  Kerberos would be another possibility.

0 0
replied on July 9, 2019

Hi Brian,

 

I tried with and without domain credentials. Not working.

When you propose LFDS Integration, do you mean connecting with SSO ? With LFDSSTS ?

 

BR,

Stive

0 0
replied on July 9, 2019

Right, any kind of SSO should avoid the problem you are seeing.

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...