Silo for Safe Access supports access to websites requiring the use of Smart Cards, such as the Common Access Card (CAC) and Personal Identity Verification (PIV) cards for authentication. A Smart Card is equipped with an embedded chip, along with a secret personal identification number code (PIN), which securely identifies the card holder

 

The CAC is the secure identification card issued by the Department of Defense (DOD) to all military personnel (active duty and retired personnel). CAC allows for computer and other electronic access by satisfying two-factor authentication, digital security, and data encryption requirements. It leverages DoD certificates to verify a card holder's identity prior to allowing access to protected resources

 

The PIV credential is a US Federal government-wide credential used to access Federally controlled facilities and information systems at the appropriate security level. PIV credentials have certificates and key pairs, PIN, bio metrics like fingerprints and pictures, and other unique identifiers

 

Improved CAC support for Dual Persona is available with Silo Windows client version 2.9.13, which supports CAC with two credential certificates. This functionality is not available on other client platforms at this time



System Requirements

The following prerequisites must be met in order to use the Smart Card functionality:

  1. Silo Windows client must be installed
  2. The local machine must have a properly configured smart card reader.


Steps

  1. The Smart Card reader will have a Red or Amber LED illuminated light indicating a proper connection 
  2. If you do not see a Red or Amber LED light, insert the reader into a different USB port or another computer. If the LED light still does not display, please contact your organization's IT Help Desk team
  3. Insert the smart card into the reader — the light will turn to Green when the card has been read and validated
  4. Log in to Silo for Safe Access using the Windows client. Enter your Master Password then click Unlock when prompted


  5. When a website requires smart card access, you will be prompted to select an authentication certificate. If you receive a Warning or Access Denied message, log out of Silo and start a new session to refresh the cache



    More Info: 

    When using both CAC and PIV during the same session, CAC certificates will not be available for website authentication

    • Silo Smart Card functionality does not allow you to sign or encrypt emails
    • Silo Smart Card functionality is not available on the macOS, Ubuntu, iPad or Web Client
    • Session Resume functionality is not available when using the Silo Smart Card
    • For additional information about CAC, please visit https://www.cac.mil/ 



    Please contact Support for any additional questions