Windows 7 home premium Smart Card login

meppur

New member
Local time
6:31 AM
Messages
2
hi ll,

i am new into the smart card technology.

i am in the military and currently check my e-mail and military websites using my CAC/ Smart Card. my OS is Windows 7 Home Premium. I have noticed when i log on to the work computers all i have to do is just

insert my smart card and enter the pin to logon on to windows 7.


can i do the same with my home computer ?????



please guys give me a hand here. i'm not well experienced with this.
 

My Computer My Computer

At a glance

win 7 home premium
OS
win 7 home premium
You're probably going to want to use Bitlocker with your smart card. This will effectively encrypt your drive/files so that they are only accesible via your smart card. This is a good strategy to use if you have a backup of your smart card in the event that it's lost or destroyed.

Using Smart Cards with BitLocker

http://www.windowsecurity.com/articles/Best-practice-guide-how-configure-BitLocker-Part1.html

   Warning
Note: In order to use Bitlocker to encrypt your home system you will need to upgrade to Windows 7 Ultimate or Enterprise, as all other versions do not come with Bitlocker. You could always use a different authentication method


TrueCrypt is an open source security program which allows you to encrypt your entire hard drive or specific file sets. You can require a password and/or a key file in order to log in. This could feasibly be done with a smart card I believe.

http://www.truecrypt.org

http://www.truecrypt.org/docs/?s=keyfiles

   Tip
My advice would be to use TrueCrypt to encrypt a particular portion of your hard drive in which you store all of your sensitive files. This would allow you to log into your computer without enhanced security yet you wouldn't be able to access your secure files without a different password and keyfile. You can enhance this security with KeePass, an open source password storage utility which can store encrypted passwords. This type of software enables you to use extremely long and complicated passwords without the need to remember them. Whenever you need to log into a website you just open you keepass software via a password and keyfile.


Either way, you can encrypt either a portion or your entire hard drive using TrueCrypt and then encrypt your passwords using KeePass. This would allow you to keep your computer safe from predators, and furthermore keep your passwords even safer.

An example of the difference KeePass makes other than the fact that your passwords are stored securely can be seen below.

Password without KeePass: My19PasSW0rD

This is easy to remember so that you don't have to store it in a password database, however it's also low on security due to the fact that a long password is hard to remember

Password with KeePass: Ë÷J$;Án#„ÅÝ ºôzªŽT9KºbhœK‘ZJ¥R¬p×$Á°µoúñƒ§™?gãÏ£ÝerV¡6ˆûÁtïôäj

There are two versions of KeePass, one that you can store on a flash drive and take with you anywhere and use on any computer. This allows you to have these long complicated passwords and use them on any computer.

The other version is that which you install on a computer. TrueCrypt has the same portability, but isn't used as frequently useless you wish to encrypt usb drives.
 

My Computer My Computer

At a glance

W7 Ult. x64 | OS XIntel Mobile Core 2 Duo 2.93Ghz [T9800 Penryn]4096MB Samsung DDR3 Dual Channel [PC3-8500F 1...NVIDIA GeForce 9600M GT 512MB [G96M Rev. C1]
Computer Manufacturer/Model Number
Apple Macbook Pro (April 2009)
OS
W7 Ult. x64 | OS X
CPU
Intel Mobile Core 2 Duo 2.93Ghz [T9800 Penryn]
Motherboard
NVIDIA nForce 730i Rev. B1 [Mac-F2268EC8 (U2E1)]
Memory
4096MB Samsung DDR3 Dual Channel [PC3-8500F 1066Mhz]
Graphics Card(s)
NVIDIA GeForce 9600M GT 512MB [G96M Rev. C1]
Sound Card
SB X-Fi Surround 5.1 USB | Onboard Realtek (Disabled)
Monitor(s) Displays
Acer x223wbd 22" | Apple Anti-Glare 17" (Disabled)
Screen Resolution
{Current} 1440x900 {Acer} 1680x1050 {Apple} 1920x1200
Hard Drives
{Internal}
Seagate Momentus 320GB 2.5" 7200RPM [ST9320421AS]

{Externals}
LaCie 320GB USB 2.0 HDD [301284UR]
LaCie 750GB USB 2.0 FW400 eSATA HDD [301314U]
LaCie 1TB USB 2.0 HDD [301304UR]
PSU
Magsafe
Case
Aluminum/Unibody (MBP52)
Cooling
2 x 6000 RPM Fans
Keyboard
Logitech G-15v2 [PN 920-000379]
Mouse
Logitech G-9 [PN 910-000338]
Internet Speed
12Mbps/2.5Mbps w/ 24Mbps Speed Boost [Comcast]
Other Info
Logitech X-540 Speakers [PN 970223-0122]
Sennheiser PC-151 Headset
The MS smart card logon infrastructure requires to setup a domain controller.
Unfortunately, with your windows being a "family edition" (instead of a professional one), you can't.

However you have an open source program which can suit your needs. Check out EIDAuthenticate which supports also CAC smart card.

Regards,
Vincent
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64
OS
Windows 7 Ultimate x64
Back
Top