New eID can't be used to authenticate in Windows #173
Comments
|
Small update for other people following this issue: Together with David we looked into this issue, and it is currently being investigated with Microsoft. |
|
Hello, I'm experiencing the same issue. Do you know if a fix was found ? |
|
Update from April 2024: This issue can 't / won't be fixed. The new eID uses a new protocol for cryptography (ECC) and Microsoft wants it to be applied more strictly. The only possibility to get this to work is to file a Change Request at Microsoft to support it without this offline login possibility. |
The new cards that use the ECC certificates (since somewhere 2021) can no longer be used to authenticate in Windows, as an alternative for login and password.
If you install the latest drivers you can use the card to authenticatie in websites, but not in Windows.
If you put the new eID in the card reader, Windows (on the logon screen) will search for the certificates and will give you the error "No valid certificate were found on this smart card"
This issue does not exist on the older card that use the RSA certificates.
All settings / policies have already been checked and confirmed by Microsoft that they've been applied correctly.
Several government agencies have reported this issue to Microsoft.
Microsoft is also investigating it and pointing towards the drivers and/or what's on (or not on) the cards.
The text was updated successfully, but these errors were encountered: