This content has been marked as final. Show 3 replies
this is really a question for the token maker - how you validate/invalidate the token is really something they control - we are just using it for auth.
How do safesign recommend you do remote reactivation of a token?
I have no official support from AET (Safe Sign). I worked through some documentations about their SafeSign Middleware and i found nothing.
I think a solution could be to use this Administration -Tool on every Client and use The Machine Recovery Option from Endpoint Encryption. (User has to reset his token on his own). But i see that this is not the responsibility of Endpoint Encryption.
But whats about the changing of a token ? Is it generally not possible to change a password back into a safesign token? And another Question Pops up: Is it possible to assign 2 tokens to one user ? Lets say a password only token and a safe sign smart card token ?
you can switch which token a user should use with the recovery options, but very few tokens support remote creation - the safesign does not as it's based on certs.
no, a user can only have one token active at any time.
the connector will create a new pki token for the user and switch then if it detects a new cert in your AD - you can't "create" a pki token for a user - that's what the connector does for you.