How To Assign Smartcards and FIDO2 Keys for Entra CBA

Overview

With current distributed workforce, additional security measures have to been added to smart card distribution. To mitigate the supply chain risks added by shipping smart cards to remote workers, EZCMS allows you to assign each smart card to a user, ensuring that only that user can add certificates to that smart card.

How To Assign a Smart Card and FIDO2 Keys for Entra CBA

  1. Open your EZCMS client application.
  2. Login with your Entra ID user account that is a smartcard administrator in EZCMS.
  3. Select the “Admin Manage Security Tokens” Page on the left menu.
  4. Select the “Assign Security Token” tab. Assign Smart Card or Security token for Entra CBA
  5. If you are using an modern token that supports Key attestation such as a YubiKey or a FEITIAN Key, connect the token you want to assign to the user.
  6. Select a user from the queue. Assign Yubikey to Entra ID User
  7. Select the token you want to assign to the user. Manage User Yubikeys in Entra ID
  8. If shipping enter the tracking number of the package.
  9. Click “Next” on the bottom right to assign the token to the user. Assign Smart Card Serial Number