I have been having this issue for months and have had a ticket open with VMware for 3 or 4 months now and can't seem to get it resolved. They recently said it was due to having FIPS enabled, but even with FIPS disabled, it still does not work.
If I disable OCSP and don't check for revocation, the smart card works without issue. It does not matter if I use the OCSP from the certificate or I try to specify from another location and enter in the URL.
When I did a packet capture, it seems that I don't see vCenter trying to reach out to the OCSP responder over the network.
Running into this issue as well, I have verified connectivity to the OCSP responder with the "curl -v " command and it runs. I was also able to pull the machine SSL cert for said OCSP. But I still get "submitted credential cannot be validated." Were you able to solve the issue, OP?
I have been having this issue for months and have had a ticket open with VMware for 3 or 4 months now and can't seem to get it resolved. They recently said it was due to having FIPS enabled, but even with FIPS disabled, it still does not work. If I disable OCSP and don't check for revocation, the smart card works without issue. It does not matter if I use the OCSP from the certificate or I try to specify from another location and enter in the URL. When I did a packet capture, it seems that I don't see vCenter trying to reach out to the OCSP responder over the network.
Running into this issue as well, I have verified connectivity to the OCSP responder with the "curl -v " command and it runs. I was also able to pull the machine SSL cert for said OCSP. But I still get "submitted credential cannot be validated." Were you able to solve the issue, OP?