Skip to main content
Version: Axidian CertiFlow 7.2

Axidian Access

Axidian CertiFlow features integration with Axidian Access.

The integration combines the following operations:

  • Card issuance
  • Certificate request
  • Writing the certificate to the card
  • Registration of the SmartCard + PIN Provider in Axidian Access

When you issue a card in Axidian CertiFlow, the Smart card + PIN authentication method is registered in Axidian Access, and a certificate is written to the card. The issued card can then be used for domain authentication, SSO access, digital signatures, and accessing resources using personal certificates.

When you revoke and withdraw a card, both the authenticator and the certificates stored on the card are deleted. Deactivating a card makes the authenticator inactive, while activating it makes the authenticator active again.

Prerequisites

To allow access to the Axidian Access section:

  1. Launch the Axidian CertiFlow Configuration Wizard.
  2. Go to Common features.
  3. Activate the Enable integration with Axidian Access option.

Configure integration

Select the instructions based on your Axidian Access version.

  1. Install and configure the following Axidian Access components:

    • Axidian Administration Tools (or Axidian Admin Pack) on each Axidian CertiFlow server.
    • Axidian Extended Security Provider on each Axidian Access server.
    • Axidian Access Smart Card + PIN Provider on each Axidian Access server and on user workstations.
    tip

    Axidian Administration Tools is included in the Axidian Access 6 installation package.
    To obtain the Axidian Extended Security Provider and Axidian Access Smart Card + PIN Provider components, contact Axidian technical support.

  2. Configure the Extended Security Provider:

    1. Create the Axidian Access Enrollment Admins security group.
    2. Add the service account to the Axidian Access User Admins and Axidian Access Enrollment Admins security groups.

  3. In the Axidian CertiFlow Management Console, open the Configuration section.

  4. Open policy settings and go to Axidian Access.

  5. Activate the Enable integration with Axidian Access option and select Axidian Access 6.

  6. Configure the following parameters.

ParameterDescription
Use Axidian Access proxy serverAxidian CertiFlow connects to the Axidian Access proxy server, which forwards the request to the Axidian Access servers. Use a proxy server if the Axidian CertiFlow servers are located outside the domain where Axidian Access server is installed.
Proxy server addressThe URL of the Axidian Access proxy server.
Username
Password		The domain credentials for a user who is a member of both the Axidian Access User Admins and Axidian Access Enrollment Admins security groups.
Allow usage of Axidian Access Windows LogonWhen you issue a card in Axidian CertiFlow, the user can authenticate to the domain using the Axidian Access Windows Logon provider.
Allow usage of Axidian Access Enterprise Single Sign-OnWhen you issue a card in Axidian CertiFlow, the user can authenticate to applications using the Axidian Access Enterprise Single Sign-On provider.
Generate Windows account random passwordWhen you issue a card in Axidian CertiFlow, a random domain password is generated for the user. When the password expires, a new one is generated. The new password is saved in the Axidian Access database.
info

If the user's last registered authenticator is deleted, the permissions for using Axidian Access Windows Logon, Axidian Access Enterprise Single Sign-On, and random password generation are disabled.