Frequently asked questions about Dekart Logon products Family

Are the credentials for the user accounts (usename, password, domain) located on smart cards/tokens/USB drives?

All user credentials for the domain accounts are securely stored on the tokens or smart cards. One smart card or token may contain several different login and passwords pairs. The user may select the desired login data during logon procedure.

Can each user have just one smart card/token that could be used on each workstation in the domain?

Yes. One USB token or smart card may be used to store user credentials required to access different machines and domains, as well as other applications, eliminating the need for multiple devices. You can also use the tokens or smart cards you already own, storing user details to access multiple applications, thus only the free portion of smart card/token memory is reserved for Dekart application data.

Will I have to configure each token on each separate machine and is there any central administration tool available?

Dekart Logon should be installed on each computer. Users may then use smart cards or other hardware keys for login (or their passwords – as they usually did, but you can turn-off "password login"). The hardware keys for these users can be created at one central location by the Administrator. The hardware key enrollment procedure consists of the following procedures:
a) formatting Token with Dekart Key Formatting utility (USB Flash drives do not require formatting);
b) transferring user credentials (username, password, domain) into smart card memory using Dekart Key Manager (For orders of minimum 10 licenses, Dekart Key Manager is offered at no charge).

How does Dekart Logon protect workstations in a network?

The user connects his hardware key on any workstation in the domain and is then prompted for a PIN code. If an invalid PIN is entered more than x times, the hardware key is blocked until unblocked by the administrator. After successfully entering the correct PIN, the user is logged into the domain (or workstation) and have access to his domain resources without having to type in his username or password.

The number of wrong PIN code entries is defined by smart-cards/tokens.

Why can't I use my Lexar Jumpdrive Secure as an authentication key?

The issue occurs because Lexar Jumpdrive Secure is detected by the operating system as a fixed disk. By default, Dekart Logon does not accept fixed disks as key storage devices, because one can accidentally store his/her profile on the local hard disk (which means that the second authentication factor, the disk, is always present), decreasing the level of security. However, Dekart Logon can be reconfigured, so that fixed disks are accepted too.

To change the settings of the application, download and execute this REG-file.