HP t310 PCoIP Administrator's Guide - Page 147

PCoIP Administrator's Guide l HID Omnikey 5321 l Gemalto PC USB-SW 11.1.3 CAC Smart Card Properties For smart card authentication and SSO, the smart card must meet one of these specifications: l GSC-IS v2.0 and v2.1 cards (firmware 3.2.0 or later) l PIV transitional cards (firmware 3.4.0 or later) l PIV endpoint cards (firmware 3.4.0 or later) 11.1.4 .Net Smart Card Properties For smart card authentication and SSO, the smart card must be a Gemalto .Net card (firmware 3.4.1 or later). 11.1.5 Communication Protocol The communication protocol between the smart card and the reader is referred to as T=X, where X is 0 or 1. Firmware 3.2.0 or later supports T=0. Firmware 3.4.0 and later supports T=1. 11.1.6 Card Certificate Requirements A certificate on the smart card must have these properties: l Key usage set to digital signature l Subject Common Name and/or Subject Alternative Name (Other Name) is set l Enhanced Key Usage includes Client Authentication and/or Smart Card Logon l Key Length is no larger than 2048 bits 11.1.7 Tested Smart Card Models Teradici has tested these specific smart card models: Smart Card Model Tested for Firmware Release (or later) Axalto Cryptoflex .NET 3.4.1 Gemalto Cyberflex Access 64K V2c 3.4.0 Gemalto TOP DL GX4 144K DI 3.4.0 Gemalto TOP DM GX4 72K (FIPS) 3.4.0 GnD SmartCafe Expert 144K DI v3.2 3.4.0 Oberthur CosmopolIC 64K V5.2 3.2.0 Oberthur ID-One Cosmo 64 v5.2D Fast ATR with PIV 3.4.0 TER0606004 Issue 16 147