I am learning about smartcard authentication with Notes 8.0.2. I have imported the internet certificate from my smartcard and configured my client ID to use my smartcard certificate and PIN. However, the Notes client has only prompted me to enter the PIN once and now logs me into the system automatically without prompting for the PIN, even after rebooting the computer.
How can I configure Domino/Notes to prompt for a PIN each time the client is started? I have searched but not found anyone with the same issue which means I probably missed something in my configuration.
Thanks!
Subject: That sounds like a driver config issue
Some smartcard drivers will cache PIN entry far longer than allowed by the PKCS#11 standard, or will allow PIN entry for one application to apply to another application as well. If you look at the documentation for your token, you should be able to find a configuration file that you can tweak in order to make that behavior match the standard.
Additionally, as of 7.0.2, you shouldn’t need to import X.509 certs from the smartcard into your ID file – the Notes client will automatically find those certs on the card when attempting to send signed S/MIME messages and read encrypted S/MIME message.