We have multiple users who are facing issues with key rings on the machines.
The error message is " The key store is not initialized. Please re-login!" when they logged into the machine.
Can you confirm what version of SGN client are you currently using? also, you may refer as well to this documentation "Enhanced authentication - the. Unconfirmed Users group" and validate your current policy
I've had this issue before too. The solution for us was to delete the cert/key (but NOT the user) from the SSG console. On reboot of the client the machine was then able to recreate the cert/key and all was well. This can also happen if the users/computers haven't sync'd yet/properly and there's multiple objects with the same details.
Also, just as a sanity check, make sure the users are logging in with the SGN Credential Provider (the one with the SGN logo)
Snr. New Product Introduction Engineer | CISSP | Sophos Technical SupportSupport Videos | Product Documentation | @SophosSupport | Sign up for SMS AlertsIf a post solves your question use the 'Verify Answer' link.
There is no user key created, so all the keys are root/domain key for the user. I tried with user certificate deletion but issue is not resolved.
Will be able to provide the screenshot what I have to remove?
Find the user - Click the Cert tab, and select the cert. MAKE SURE you don't highlight the user on the left. It'll delete the user and not the cert with the same function!
Oh Ok. MichaelMcLannahan, I did it but no success.Would you suggest how I can make a group to uninstall the machine which is in AD OU as the Safeguard console is synced with AD.Once the group is created, I can asssign the no encryption policy to those machines where I want to uninstall the Safegaurd.