To read iCLASS and pivCLASS credentials using an OMNIKEY 5422 reader, Security Center 5.10.1 or later is required, and the OmnikeyReadersConfiguration.gconfig file must contain specific lines of code.
The configuration file must contain the following lines of
code:
<?xml version="1.0" encoding="UTF-8" ?>
<Readers>
<Reader ModelFamily="[Reader name from HID OMNIKEY Workbench]">
<SupportedCards>
<Card Type="iClass"/>
...
ADD PIV CONFIGURATION HERE
...
</SupportedCards>
</Reader>
</Readers>You can add the following configurations:
-
<Card Type="PIV" Bits="75"/>Generates FASC-N 75-bit format credential (GSA standard).
-
<Card Type="PIV" Bits="200"/>Generates FASC-N 200-bit format credential.
-
<Card Type="CIV" Bits="128"/>Generates 128-bit GUID from a PIV-I or CIV credential.
IMPORTANT: PIV formats are mutually exclusive. You cannot use both 75-bit and
200-bit formats for the USB reader at the same time because the GSA 75-bit format is
calculated from PIV 200-bit FASC-N. However, you can use PIV and CIV together, since CIV
does not use FASC-N.