Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Pardon our Dust.

Welcome to the new site for Federal Identity, Credential, and Access Management (FICAM) Playbooks! We are consolidating all existing FICAM and Federal Public Key Infrastructure (FPKI) playbooks to this new page to help you find answers and content faster. Please bookmark this URL for future reference.

Introduction to Network Authentication Guides

These Network Authentication guides will help you configure your Windows network domain for smartcard logon using PIV credentials.

There are many useful pages and technical articles available online that include details on configurations and using generic smartcards. The information presented here addresses common questions and configurations specific to the US Federal Government, PIV smartcards, and US federal civilian agency Certification Authorities.

Teamwork

Work with your Network Engineers, Domain Admins, Account Management, and Information Security colleagues to review the information, perform the configurations, and troubleshoot any issues together.

Pre-Launch Checklist

Check the following items before reviewing these network guides and lessons learned:

  1. Users have PIV credentials and PIV card readers
  2. You are using Microsoft Active Directory to manage your Windows network
  3. Domain Controllers are Microsoft 2008 R2 or 2012 or above
  4. User workstations are joined to your network and are Windows 7, Windows 8, or Windows 10-based

Configuration Checklist

There are five configuration categories to review with your colleagues. All five includes steps that must be completed and it’s best to review and complete in this order:

There are three additional guides:

We want to add additional information for installing online certificate status protocol (OCSP) services, common errors and troubleshooting, and configuring MacOSX and other operating systems.

Submit an Issue to identify information that would be helpful to you, or consider contributing a page to these guides with your lessons learned.