Share via

Windows Security Not Recognizing Inserted CAC

Anonymous
2024-04-05T14:33:51+00:00

Up until yesterday, my Adesso CAC reader was working without issue and Windows was letting me sign-in to CAC enabled websites from home without issue. However, trying to access email yesterday, I selected my proper security certificate from my CAC but then I get another pop-up from Windows Security saying directing me to "Connect a Smart Card". After this happens, I am locked out of any CAC enabled sites and don't even receive any further prompts or pop-ups when reloading the page.

To reiterate, when initially trying to sign-in, I am prompted to select a security cert so the card is initially recognized. Windows Security then pops up, after selecting my cert, and is telling me to insert a smart card.

***moved from Windows / Windows 11 / Devices and drivers***

Windows for business | Windows Server | Directory services | Certificates and public key infrastructure (PKI)

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.

0 comments

14 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2024-12-12T14:20:08+00:00

    Log on as the local administrator. Go to Start, Run, type in: services.msc, Verify that both ActivClient middleware and SmartCard services are stopped. (Windows 8 users hover your mouse in the lower right corner of your screen to get the Charms bar to show up. Click Search, type in "regedit.exe" then click it with your mouse.)

    From the Search programs and files (Windows 8 and newer): type: Regedit

    Navigate to "HKLM\Software\Microsoft\Cryptography" Right click on the Calais folder then choose "Permissions".

    Verify "LOCAL SERVICE" exists, if it doesn't, click "ADD"

    In the large white box type "LOCAL SERVICE" IF your computer is part of a domain, you will need to add your computer name\ before "LOCAL SERVICE"

    Click Check Names, then OK.

    Select Local Service -> Click Advanced (button) -> in the Permissions (tab) select LOCAL SERVICE -> and click Edit. (Windows 8.1 & 11 users will need to click "Show advanced permissions" to see these).

    Mark the following with Allow:

    Query Value

    Set Value

    Create Subkey

    Enumerate Subkeys

    Notify

    Delete

    Read Control

    Click OK

    Close all open windows

    Open Services.msc again, Start smart Card Service, Start ActivClient middleware Service.

    CAC Reader "should" now be showing in ActivClient.

    10+ people found this answer helpful.
    0 comments
  2. Anonymous
    2024-12-03T04:51:26+00:00

    No, it is definitely the Update. My AVD (Remote Desktop App) was working fine with my CAC reader and card till the update. Now during what should be a login process involving a pop up asking what I want to use to authenticate (then I select my CAC reader), pin, and then login. Now it just breezes right thru never presenting a pop up for CAC selection or for asking for a pin. Just strait to no certificates were found.

    Then you can select another way to log in, as soon as you select smart card, it repeats the above process.

    10 people found this answer helpful.
    0 comments
  3. Anonymous
    2024-11-08T20:16:34+00:00

    I had a similar problem with the Windows 11 update on 20 Oct 2024. The device manager says the CAC readers are installed and up to date and recognizes them. However, my CAC card and certificates will not read. The green light on the SCR3310v2 does not light up with the card is in it. I've installed brand new drivers and tried just about everything. I also deactivated memory integrity and vulnerable driver blocklist, but I see no change. I know the CAC readers are working because I bought two brand new ones and tested on another computer. Both the SCR3310v2 and the SCR3500 are new and work, but will not read on my computer. I think it is something in the Windows 11 update that is causing this issue. Please help.

    8 people found this answer helpful.
    0 comments
  4. Anonymous
    2024-04-10T19:14:44+00:00

    I suggest you do the following:

    1. Remove your CAC from the reader.
    2. Visit the Internet options located in the control panel.
    3. Click the content tab.

    4.. Click Clear SSL state.

    1. Click certificates.
    2. As a backup measure export all the certs found under Personal.
    3. Remove all the certs found under Personal and close the window.
    4. Place your CAC back in the reader.
    5. Go back and check the Personal certificates area and they should be back.
    6. Launch your web browser and try to visit sites requiring a CAC.

    4 people found this answer helpful.
    0 comments
  5. Anonymous
    2024-12-05T16:55:36+00:00

    Same issue, really hoping to see a microsoft rep jump in.

    3 people found this answer helpful.
    0 comments