Document toolboxDocument toolbox

Set up physical smart card management in Identity Manager

This article describes how to set up physical smart card management in Smart ID Identity Manager, by integrating Identity Manager to Smart ID Desktop App and Smart ID Messaging.


 Prerequisites

The following prerequisites apply:

  • Servers must have the following installations:
  • Clients must have the following installations:
    • Fully updated Windows 10 
    • Smart ID Desktop App of the latest version. See Install and upgrade Smart ID Desktop App.
    • A PKCS#11 compliant smart card middleware must be installed.
    • Supported cards e.g. Card OS 4.4, 5.0, 5.3 etc. cards depends on the middleware and encoding set up.

Step-by-step instruction

  Integrate Identity Manager with Smart ID Messaging
  1. Set up communication between Identity Manager and Smart ID Messaging over HTTPS. See Integrate Identity Manager with Smart ID Messaging.  
 Configure card production and card job tasks

Do the configuration steps of Production Preview and Card Job task for performing Card Encoding via Smart ID Desktop App instead of Nexus Card SDK.  

  1. Card Production task:
    1. In Identity Manager Admin, go to the Cards section.
    2. Open the card type which is used for the production task, for example, Employee Card, USB token, Contractor Card, etc.
    3. Change the production component to Personal Desktop App, which will perform the card production task via Smart ID Desktop App (formerly known as Personal Desktop App).
  2. Card Job task:
    1. In Identity Manager Admin, go to the Encodings section.
    2. Open the encoding description which was configured in the Card Job task.
    3. Go to the Details tab of the encoding description. Set Devices=8711 to perform encoding via Smart ID Desktop App (Nexus Card SDK uses the value 8710).

      Encoding descriptions with Devices=8711 are incompatible with card production tasks configured for Nexus Card SDK! If you need both use-cases, you have to use separate encoding descriptions.

Troubleshooting

Browser popups must be allowed for the running Identity Manager server to be able to call the Smart ID Desktop App plugout URL. Most browsers block them by default and show a very subtle hint that a popup was blocked.

If the Smart ID Desktop App plugout URL is not called, check your browser's URL bar for any indication about blocked popups and add an exception.

Related information

Copyright 2024 Technology Nexus Secured Business Solutions AB. All rights reserved.
Contact Nexus | https://www.nexusgroup.com | Disclaimer | Terms & Conditions