Reset Search



KB41008 - How to configure the Smart Card Authentication

« Go Back


Last Modified Date10/10/2017 9:17 PM
This article provides step-by-step instructions how to configure the Smart Card Authentication.
Problem or Goal


  • Copy of the certificate authority and its certification path which signs the smart card certificates

Steps to Configure the CAC Authentication:

Import root certificate and its intermediate chain
  1. Login to admin console
  2. Navigate to Configuration > Certificates > Trusted Client CA's
  3. Click Import CA certificate
  4. Import the root certificate authority first and each intermediate certificate(s)
Create the Authentication Server for Certificate authentication:
  1. Navigate to Auth Server 
  2. From the drop-down menu, select Certificate Server
  3. In the Name field, enter a friendly name
  4. In the username field, the field will be pre-populated with <certDN.CN> and obtain the username from the Common Name field of the end user certificate
  5. Click Save Changes
  6. Navigate to Users > User Realms
  7. From the list, select the corresponding User Realm or click New (to create a new realm)
  8. From the Authentication drop-down, select friendly name of the certificate auth server created in Step #2
  9. Click Save Changes
If Pulse Secure Desktop client is utilized with multiple client certificate installed, the recommendation is to configure the Prefer smart card certificate option.  For more information, refer to KB40329 - How to enable the Improved Certificate Preference Selection Method feature in Pulse Secure Desktop client.
Related Links
Attachment 1 
Created ByDivya Rajendran



Was this article helpful?



Please tell us how we can make this article more useful.

Characters Remaining: 255