To configure the smartcard options

  1. In the Format used in your organization area, select the Smart Card protocol that your organization uses.
    • Not Common Access Card (Not CAC) - all other formats

    • Common Access Card (CAC) - the CAC format

  2. In the Smart Card driver deployment area, select the drivers for your Smart Card and Reader. All selected drivers will be installed on endpoint computers when they receive policy updates.

    If you do not see a driver required for your Smart Card, you can:

    • Enter a text string in the Search field.

    • Click Import to import a driver from your computer. If necessary, you can download drivers to import from the Check Point Support Center.

  3. In the Directory Scanner area, select Scan user certificates from Active Directory if you want the Directory Scanner to scan user certificates.
  4. If you selected to scan user certificates, select which certificates the Directory Scanner will scan.
    • Scan all user certificates

    • Scan only user certificates containing the Smart Card Logon OID - The OIDs are: 1.3.6.1.4.1.311.20.2.2.