Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 5 subscribers
  • Views 18913 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can't add second user to login at POA

DaveK

I'm not able to add a second user to login at POA.

I've tried following the steps here: http://www.sophos.com/en-us/support/knowledgebase/107857.aspx

but the login fails whenever any user other than the administrator tries to login at POA.

I am using the SafeGuard Enterprise credential provider to login to Windows, after logging into POA with the administrator account. Whatever user I login to the Safeguard credential provider it works fine, but they never gain the abilitiy to login at POA and I've tried several different computers.

I obviously don't want to give out my administrator password for the users to login.

Also, I've created accounts in the POA domain, which works, but the users have to change the domain every time as the POA domain never "sticks" and I can't find a way to do that.  If it could just remember the POA domain, that would be great as well.

I'm using version Safeguard Enterprise 6.00.1.13

Thank you!

:43943


This thread was automatically locked due to age.
Parents
  • 0
    Be aware that adding users to POA through the Management Center is only successful if the user already has a valid user certificate - in other words they have successfully registered to a POA.

    To add a new user to a POA on a machine, your policy needs to allow user assignment.
    Then you do the following:

    1) turn the machine off - it needs to go to cold ram
    2) turn it on
    3) at the POA, uncheck the passthrough to Windows box in Options
    4) log into the POA with the account that is owner of the machine
    5) the next screen will be the Windows Credential Provider - log in with the new account you want assigned (do not sign in with the account you used at the POA - this will invalidate the process)

    This process will register that new user account to the machine and create a user certificate for them. After this, you can assign them out to other SGN machines through the Management Center.

    RichardP

    Program Manager, Support Readiness | CISSP | Sophos Technical Support
    Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

Reply
  • 0
    Be aware that adding users to POA through the Management Center is only successful if the user already has a valid user certificate - in other words they have successfully registered to a POA.

    To add a new user to a POA on a machine, your policy needs to allow user assignment.
    Then you do the following:

    1) turn the machine off - it needs to go to cold ram
    2) turn it on
    3) at the POA, uncheck the passthrough to Windows box in Options
    4) log into the POA with the account that is owner of the machine
    5) the next screen will be the Windows Credential Provider - log in with the new account you want assigned (do not sign in with the account you used at the POA - this will invalidate the process)

    This process will register that new user account to the machine and create a user certificate for them. After this, you can assign them out to other SGN machines through the Management Center.

    RichardP

    Program Manager, Support Readiness | CISSP | Sophos Technical Support
    Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

Children
No Data
Unfiltered HTML