FIDO2 / Smart Card Replacement / Active Directory / Samba4

Hi Community,

Based on the German computer magazine c’t / special edition I bought a FIDO2 stick from YubiKey (5C NFC). I love how it works together with password software on different devices (I use KeePassXC on Windows and KeePassium on my iPhone).
Also, its OTP system works with Nethserver and Proxmox Web frontends. I wonder if I can use it for Windows login from my Nethserver based domain. However, it requires the certificates and / or a CA.

By change: has someone realized a smart card based AD auth / login? If so, can you please share your steps, minds, ideas, fails and progress?

TIA
Thorsten

NethServer Version: 7.9
Module: AD enabled

@support_team
Did somebody has done a smart card login.