Hitachi ID Password Manager allows users to reset a forgotten PIN on their smart card:
- Users must access Password Manager from their PC, as this is the only
device with a card reader.
- Organizations may choose from a variety of technologies to enable
access from the login screen. The most popular is the Hitachi ID Login Assistant
client, which adds a tile to the Windows login screen via the
Credential Provider (CP) OS infrastructure.
- Password Manager supports off-site users by establishing a temporary
VPN connection using its own credentials.
- Using the Password Manager web portal, users can authenticate themselves
with any combination of credentials, obviously excluding their
non-functional smart card.
- Once authenticated, Password Manager uses an ActiveX control to communicate with the card reader, to unblock the smart card.
Watch a Movie
Self-service reset for a forgotten or locked out smart card PIN
- User forgets the PIN to his smart card.
- User presses a "help" button to access self-service.
- A kiosk-mode web browser is launched.
- User enters his network login ID.
- User answers security questions.
- User chooses a new PIN for his smart card.
- ActiveX runs on the user's PC, unblocks the card and injects the new PIN.
- User signs into Windows with the smart card and new PIN.
- Access to self-service password reset from a locked out PC.
- PIN reset is available on-site and also while mobile (via temporary VPN).
- ActiveX is used to communicate with the smart card reader, unblock the card and set the new PIN.