• Network Security Manager 2.4.0 On-Premises System
• About Network Security Manager
  • About NSM
  • About the System Option
  • Conventions
    • Guide Conventions
    • UI Conventions
  • Related Documents
• Dashboard
  • System Information
  • CPU Usage
  • Memory Usage
  • Network Interfaces
  • Disk Usage
  • Active Users
• Settings
  • Licenses
  • Administration
  • Time
    • Setting Time
    • Adding an NTP Server
    • Deleting an NTP Server
  • Certificates
  • Common Access Card (CAC) Authentication
  • Diagnostics
    • Diagnostics Tests
    • Tech Support Report
  • Firmware and Settings
  • Backups/Restore Feature
    • Configure a Scheduled NSM File System Backup
    • Configure a Scheduled NSM File System Backup via SCP
    • View NSM File System Backups
    • Create a NSM File System Backup
    • Create SCP of a NSM File System Backup
    • Import a NSM File System Backup
    • Export a NSM File System Backup
    • Delete a NSM File System Backup
    • Restore NSM to a File System Backup
    • Backup/Restore NSM using Safemode
  • Zero Touch
  • Shutdown/Reboot
  • Closed Network
• Network
  • Settings
  • Interface
  • Routes
• System Monitor
  • Settings
  • Live Monitor
  • Process/Service Monitor
  • System Report
• High Availability
  • Status
  • Settings
  • Advanced Settings
  • Virtual IP
  • HA Modes and Terminologies
  • Backup/Restore in High Availability Setup
    • Configure a Scheduled Backup in High Availability Setup
    • Restore Feature in High Availability Setup
• NSM Management Console
  • Upgrade Instructions using Upgrade Package
  • Upgrade Instructions without Upgrade Package

Common Access Card (CAC) Authentication

A Common Access Card (CAC) is a United States Department of Defense (DoD) smart card used by military personnel and other government and non-government personnel who require highly secure access over the Internet. A CAC uses PKI authentication and encryption. Using a CAC requires an external card reader connected on a USB port.

NSM on-prem supports CAC Authentication to authenticate the access to the NSM On-prem system.

In order to use the CAC authentication, you are required to set up the following

1. Import CA certificate in NSM through System | Settings > User Management > Authentication Servers > Authentication type. For more details, refer Authentication Servers.

   

2. Create or Import Digital Authentication Certificate – Create or import a digital certificate from a PKCS#7 (.p7b), PEM (.pem) or DER (.der or .cer) encoded file; or a local end-user certificate with private key from a PKCS#12 (.p12 or .pfx) encoded file. Refer Certificates to create or import digital authentication certificate.

   Only one certificate can be used as a CAC authentication certificate.

   

3. Enable Digital Certificate Authentication under System | Settings > Administration > Web Management. Refer Administration section for more information.

   CAC option is shown only if this is enabled.

   

4. Add User - Choose Authentication server as CAC for the user. Navigate to System | User Management > Users > Add User.

   User name should match the Certificate common name.