The Smartcard removal behavior setting defines the action WWPass Dashboard performs when a user disconnects a smartcard from the computer. The value of the Smartcard removal behavior setting can be viewed and changed in the Advanced tab of the WWPass Dashboard application. Alternatively, a system administrator can create a Windows Group Policy to control the value of the Smartcard removal behavior setting on a set of multiple computers connected to a Windows domain.
The Smartcard removal behavior setting of the WWPass Dashboard should not be confused with the Smart card removal behavior setting of Microsoft Windows. Under some circumstances Windows Smart Card Removal Policy service may trigger false smart card removal events even if delayed start of the Smart Card Removal Policy service has been configured. This is likely to happen when slow client or server computers are used, or the network connection between them has low bandwidth available.
The Smartcard removal behavior setting of the WWPass Dashboard is intended to help a system administrator to get a consistent behavior on smartcard removal in situations where the Smart Card Removal Policy Service of Microsoft Windows does not operate as needed.
When the user disconnects a smartcard (e.g. a WWPass PassKey), the WWPass Dashboard application waits 5 seconds to make sure the smartcard stays disconnected. If the smartcard stays disconnected for 5 seconds, the WWPass Dashboards performs an action defined by the value of the Smartcard removal behavior setting.
WWPass Smartcard removal behavior defines an additional action which is not available in Windows Smart card removal behavior policy. This action is called “Disconnect remote sessions” and unlike other actions executes on a client computer that initiates a remote connection. When “Disconnect remote sessions” is selected and a user disconnects WWPass PassKey, WWPass Security Pack silently terminates all instances of Microsoft Remote Desktop on a client computer, effectively leaving RDP sessions in the “Disconnected" state.
Server side: Microsoft Windows Server 2008 R2 and later.
Client side: Microsoft Windows Vista and later.
The Smartcard removal behavior setting is stored in the following registry key:
Value name is onRemove.
This setting can take the following values:
|2||Force logoff (disconnect).|
|3||Disconnect all Remote Sessions (disconnectAll).|
The WWPass Dashboard reads the value of the Smartcard removal behavior variable every time the application is started and each time the user switches to the Advanced tab of the application.