This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 60%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
I am trying to reduce the number of times Windows Security prompts the user for their smart card PIN but not sure where to look, is it from the vendor, is it a GPO or is it based on the type of crypto provider chosen for the user's smartcard?
My simple scenario is user is logs on to their Win 10 client using their smartcard + PIN, they launch a browser to an ADFS aware client, the user is asked to choose their certificate and is prompted for a PIN. Now is it possible for this prompt to be removed as they have already authenticated?
I have search but only found high level articles, cannot find any operation docs on managing PIN caching.
Ta
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 15%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJF%3C/text%3E%3C/svg%3E)
I know I'm about 5 months late responding but, what you're looking for is instructions to configure "Windows Integrated Authentication" for ADFS and clients.
and this https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/troubleshooting/ad-fs-tshoot-iwa
Come on! No one got a hint.
Is there a better forum for techies to ask questions?