You are an IT consultant for small and mid-sized business.
One of your clients wants to start using Virtual Smart Cards on its Windows 10 Enterprise laptops and tablets.
Before implementing any changes, the client wants to ensure that the laptops and tablets support Virtual Smart
Cards.
You need to verify that the client laptops and tablets support Virtual Smart Cards.
What should you do?
A.
Ensure that each laptop and tablet has a Trusted Platform Module (TPM) chip of version 1.2 or greater.
B.
Ensure that BitLocker Drive Encryption is enabled on a system drive of the laptops and tablets.
C.
Ensure that each laptop and tablet can read a physical smart card.
D.
Ensure that the laptops and tablets are running Windows 10 Enterprise edition.
Explanation:
A Trusted Platform Module (TPM) chip of version 1.2 or greater is required to support Virtual Smart Cards.
Virtual smart card technology from Microsoft offers comparable security benefits to physical smart cards by
using two-factor authentication. Virtual smart cards emulate the functionality of physical smart cards, but they
use the Trusted Platform Module (TPM) chip that is available on computers in many organizations, rather than
requiring the use of a separate physical smart card and reader. Virtual smart cards are created in the TPM,
where the keys that are used for authentication are stored in cryptographically secured hardware.
Incorrect Answers:
B: BitLocker Drive Encryption does not need to be enabled on a system drive of the laptops and tablets to
support Virtual Smart Cards.
C: The ability to read a physical smart card does not ensure support for Virtual Smart Cards.
D: Windows 10 Enterprise edition is not a requirement for Virtual Smart Cards; other versions of Windows 10
(and Windows 8) can use Virtual Smart Cards.https://technet.microsoft.com/en-GB/library/dn593708.aspx