Smart card SSO is triggered whenever a user logs on with a smart card in one of the following conditions:
1. The user does not have a valid EFS encryption key on the computer, and smart cards are required for EFS by policy settings
2. The user has a valid EFS encryption key that resides on the smart card, which is used for logon
When SSO is triggered, EFS caches the Personal Identification Number (PIN) entered by the user at the time of logon and uses it for EFS operations as well. Therefore, the user does not see any PIN prompts from EFS during the session.
1. The user does not have a valid EFS encryption key on the computer, and smart cards are required for EFS by policy settings
2. The user has a valid EFS encryption key that resides on the smart card, which is used for logon
When SSO is triggered, EFS caches the Personal Identification Number (PIN) entered by the user at the time of logon and uses it for EFS operations as well. Therefore, the user does not see any PIN prompts from EFS during the session.