I want to be able to use Smart Card login for SAM application users that do NOT have Windows AD accounts on the local domain. Everything I am finding has instructions for either configuring SAM to directly authenticate to an AD account, or using client certificate mapping to map a token back to a Windows OS account. I'm not able to do either here as the environment we're operating is on a child domain, but our actual administrative accounts that we log in with are on a different domain within the forest that we / the SAM service account don't have access to.
Is it possible to configure a SAM individual account to utilize a smart card without it being tied to an AD account?
Solved! Go to Solution.
Yes, I have already gone through those pages. The documentation in those reflects how to set up Smart Card user authentication through the use of an Active Directory domain account that is already set up to use Smart Card authentication. In my case, I cannot use an Active Directory domain account.
FYI, I just confirmed with our Smart Card guru that you need to have either the main Orion poller or an Additional Web Server (AWS) on the domain to support Smart Cards. Feel free to submit a feature request.
SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 150,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process. Learn more today by joining now.