Setup Scenario Example 1 using the Subject field:
- You have a Gemalto.NET V2, CAC, or PIV token that supports the Read Username from Smartcard feature.
- You want to log on as User1, which is the DE/EEPC user name.
- The user name that you want to log on as (User1) resides in the Subject field on the certificate (for example: CN=User1,DC=DomainComponent,DC=com).
- So, under ePO Logon Product Settings, select Subject as the certificate field that contains the user name.
- Because you want to match the whole certificate field, deselect Match certificate username field up to the @ sign.
- Check the EE LDAP Sync Task User Name attribute field in ePO. In this situation, the field distinguishedname is the correct field to use because it contains the exact same information as the cert field Subject, so a valid comparison can be made.
- Run the DE/EE LDAP Sync Task, and synchronize your product policy onto the system you want to use the Poll Card feature on.
IMPORTANT: It’s essential to understand that the distinguished name LDAP attribute is now being used. If you ever have to log on manually at the preboot authentication (PBA) stage, you have to type in the distinguished name into the User name field (for example, CN=User1,DC=DomainComponent,DC=com).