Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 5 subscribers
  • Views 18158 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Windows8 vs SafeGuard

TheRaccoon

Dear Community

I have the following problem

Have a Windows8 client with a TPM chip.
We have (wanted) SafeGuard install on the client as it was described in the YT Channel from Sophos.
After installing the Componten it only performs Bitlocker. At every start he asks me what we have always placed after the Bitlocker password.
But we do not want the one that Bitlocker Password Does not that you can log in, you should be able to log in using their domain user. As is the case with Windows 7.
The Challenge Response Funkoniert unfortunately not. And there are unfortunately no POA registration.

But the client can connect to the server and the Rule sets are also accepted.

I thank you in advance for your help.

mfg TheRaccoon

:55540


This thread was automatically locked due to age.
  • 0

    Hi Raccoon,

    please mind that the SafeGuard Device Encryption module (brings the POA to the systems) is only supported under Windows XP, Vista (up to version 6.00.1) and Windows 7. 

    When using Windows 8, the SafeGuard Client does not install the POA but provides enhanced management and recovery functions for BitLocker encryption.

    If you want to protect your Windows 8 systems using SafeGuard Enterprise BitLocker Client, but do not want to enter a password at the BitLocker preboot stage but login with your domain credentials at Windows, I'd suggest to switch from the currently used BitLocker protectors (default is "TPM+PIN" and "Password or Startup Key") to "TPM" (without PIN) and "Startup Key" as a fallback protector.

    You can change the used BitLocker protectors at the SafeGuard Authentication Policy | BitLocker Options | BitLocker Logon / Fallback Mode for Boot Volumes

    Hope that helps.

    Regards,

    ChrisD

    :55543
  • 0

    HI

    Unfortunately it did not funkoniert as desired. Bitlocker ask anyway after the key, and from whom he has been entered correctly only come to Windows Login (No POA possible).

    And whom a user that logs on then he does not ask in the first authentication.
    Challenge Response as in not possible YT video.

    Thank you for your help
    TheRaccoon

    :55553
  • 0

    Hallo TheRacoon,

    POA gibt es weder mit Windows 7+UEFI noch mit Windows 8.x. Challenge/Response ist (nur) unter bestimmten Voraussetzungen möglich. Details (großteils auf Deutsch, nicht notwendigerweise einfach verständlich :smileywink:) finden sich in der entsprechenden Dokumentation

    Christian

    :55560
  • 0

    HI

    Danke Christian für deine anleitung.

    Wir bekommen die installation zusammen. Und wir haben es auch geschaft das er mit den Server eine Verbindung herstellen kann. 
    Gibt es eine möglich keit für eine Challange Response ohne Bitlocker. 
    Oder ist es nur mit Bitlocker möglich?


    mfg TheRaccoon

    :55561
  • 0

    Hallo TheRaccoon,

    Challenge/Response ohne Bitlocker

    vielleicht verstehe ich da was falsch: C/R dient dazu, den Decryption (Recovery) Key wiederherzustellen. Ohne Bitlocker keine Encryption und daher auch keine Notwendigkeit für C/R. Es geht doch um Device/Disk Encryption, oder?

    Christian

    :55572
  • 0

    HI

    Ja es geht um die Device Encryption.

    mfg TheRaccoon

    :55573
Unfiltered HTML