Re: Smart Card Logon Error Event ID 5

---

• From: Brian Komar [MVP] <bkomar@xxxxxxxxxxxxxxxxx>
• Date: Tue, 31 Oct 2006 15:13:56 -0600

---

In article <E5270AAC-23F0-4DCA-96CB-B7054FD4E30D@xxxxxxxxxxxxx>,
LawrinWalker@xxxxxxxxxxxxxxxxxxxxxxxxx says...

The Smart Card in question that is all of a sudden not working on certain
machines is a GEMPLUS GXP3 64V2N card. That is what is stamped on the back
of the card above the magnetic strip.

The middleware we are using is ActivCard Gold for CAC-PKI, Feature Pack 2

Lawrin

"Brian Komar [MVP]" wrote:

In article <6EB806AE-F2B0-4933-9F1A-2DBE186D5A62@xxxxxxxxxxxxx>,
+Brian@xxxxxxxxxxxxxxxxxxxxxxxxx says...

My Windows XP (SP2) w/auto-Windows Update enabled has been set up for Smart
Card Logon in active directory (AD) since late May of this year. Everything
worked fine until sometime in early July it stopped working with the
following error message:

Event ID: 5 Source: Smart Card Logon
An error occurred while retrieving a digital certificate from the inserted
smart card. The system cannot find the file specified.

I can use my card on this same computer to sign/encrypt email in Outlook
2003 and can logon to web servers which are enabled for smart card logon. I
can logon to AD from other computers (with smart card readers) on my network
but not my own.

How do I fix this problem without reloading the software on the computer?

Thanks.

What smart cards are you using?
What middleware are you using?
Brian

Using the ActivCard tools, determine what certificate is in the default
slot on the smart card. I have seen several vendors have issues with the
renewal process where the new certificate is not moved to the default
slot. With Windows XP/2k3 and earlier, only the certificate in slot 0
can be used for authentication. If the previous certificate was not
moved out of the default slot, this would explain your authentication
failure.

Brian
.

---

• Prev by Date: Re: in defender: why is ther no 'always allow' status
• Next by Date: Re: Dialui
• Previous by thread: Re: in defender: why is ther no 'always allow' status
• Next by thread: Re: Smart Card Logon Error Event ID 5
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Certificate disappears from smart card ... | wondering if my understanding of how a smart card works is faulty. ... | Card Certificate enrollment station web page (the one off the Microsoft ... Windows event logs do not ... (microsoft.public.security) Re: Windows logon through smart card. ... The card vendor should have a CSP ... You are correct that the certificate is stored only on the smart card. ... The smart card's role is to SIGN the logon process using the PRIVATE KEY ... (microsoft.public.platformsdk.security) Re: Windows logon through smart card. ... The card vendor should have a CSP ... You are correct that the certificate is stored only on the smart card. ... The smart card's role is to SIGN the logon process using the PRIVATE KEY ... (microsoft.public.platformsdk.security) Re: Windows logon through smart card. ... The card vendor should have a CSP ... You are correct that the certificate is stored only on the smart card. ... (microsoft.public.platformsdk.security) external DLL in c++ ... Library for reading public info from the SIS card ... first available (according to PC/SC card reader enumeration), ... return "The smart card resource manager is not running."; ... (comp.lang.clarion)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(14)