It is possible to authenticate using a smartcard at websites, e. g. Citrix Web Interface or StoreFront.

When connecting via an SSL/TLS secured https URL, the root certificate of the web server certificate has to be known as the Trusted Root Certificate on the endpoint device; see Deploying Trusted Root Certificates in IGEL OS, certificate types Web Browser Certificate and (!) SSL Certificate.

Select the appropriate PKCS#11 module (security device) for the smartcard under Sessions > Firefox Browser > Firefox Browser Global > Smartcard Middleware or/and under Sessions > Chromium Browser > Chromium Browser Global > Smartcard Middleware.

  • Gemalto SafeNet
  • cryptovision sc/interface
  • Gemalto IDPrime
  • Athena IDProtect
  • A.E.T. SafeSign
  • SecMaker Net iD Enterprise (formerly called "SecMaker Net iD")
  • SecMaker Net iD Client (the next generation of SecMaker Net iD Enterprise, see
  • Coolkey
  • OpenSC
  • 90meter

    Licensed Feature

    This feature requires an add-on license; see Add-On Licenses. Please contact your IGEL reseller.

For details on the custom PKCS#11 library, refer to the article Using a Custom PKCS#11 Library.