Required users in SafeGuard console?

Question

We do not use File Encryption. We basically image a computer, login to the Safeguard credential provider (or to domain, then login to the Safeguard prompt) which prompts encryption. 
 Then we disable the credential provider and the auth prompt using the following script: 
 C:\windows\syswow64\SGMCmdIntn.exe -i 
 rename "C:\Program Files (x86)\Sophos\SafeGuard Enterprise\Client\x64\SGNAuthAppn.exe" SGNAuthAppn.exe.old 
 
 So my question is, if we encrypt with a small set of users, do we even need other users added/synced to the Safeguard Console?

MichaelMcLannahan · Accepted Answer

Hello again - Yes I would. That way you can assign policies/setings to users and not just devices. I would test the modification of cred providers VERY carefully. When I disabled the Windows one all sorts of issues and side effects were experienced. Yes it DID look better with just ONE icon/user to log in with - but my users quickly got used to logging in with the "Sophos cog". 
 The users are easy to add/approve on the console - but it all will work better if bound to a domain. Easier to manage too, but that might not suit your setup. 
 
 I know you probably know, but just to remind you that SSG is End Of Life in July 2023, so it's worth bearing this in mind when planning new SSG config/developments. 
 
 All the best

Required users in SafeGuard console?

Top Replies