Manage Smart Login
Smart Login allows Passwordless authentication to Identity as a Service. When enabled, a user who has logged in to their Windows desktop using the Entrust Identity Bluetooth Smart Credential Reader 3.0.1 can authenticate to their Identity as a Service account without the need to provide a username and password. This feature is available only for the Identity as a Service Admin Portal, User Portal, and OIDC or SAML applications integrated with the Identity as a Service account.
Smart Login is supported on Chrome, Internet Explorer, and Edge. FireFox is not supported.
Attention: Before you begin, complete the steps to Configure Device Agents for either Windows, Mac, or both. See Manage Device Agents.
Topics in this section
Smart Login set up checklist
Use this checklist to help you set up Smart Login with Identity as a Service. Along with this Identity as a Service Administrator Help, you also need the following documentation to complete Smart Login set up for Identity as a Service:
Configure Windows clients protected by another Credential Provider
If another credential provider (such as, McAfee or Symantec) overwrites Windows login, you must add a new Windows registry key to enable Smart Login with Identity as a Service.
Configure the Domain Controller to trust the issuing CA
You need to configure the domain controller to trust the Certificate Authority that issues the smart credential.
Map a User Principal Name to a Smart Credential definition
Users require a User Principal Name to use a Smart Credential for Smart Login. Smart credentials configured on Identity as a Service do not have a User Principal Name (UPN)value by default if the user does not have a value defined for User Principal Name system attribute. You may want a User Principal Name value to be auto-populated for every smart credential if smart cards are being used for Smart Login.
Configure passwordless computer login with mobile smart credentials through Bluetooth
2 items