POA wont allow more than one user

Hello Rob,

Yes, this is how the product has been designed to work. To allow users onto any machine you will need to have a Specific Machine Settings policy with Allow registration of new SGN users for set to "Everybody".
If "Owner" is selected only the machine owner can allow other users to logon, if "Everybody" is selected then anyone who can logon to that machine can allow other users to logon.
This policy will need to be synchronised to a machine to become effective.

Now, before one of the users can login they will need to be granted access to that machine. To do this get a regular user of that machine to login past POA without the "Passthrough to Windows" tickbox enabled.
When you get to Windows just click "Switch User" and there will be a login for "SafeGuard Other".
The user should be able to login here and access the machine.
As the user has now logged onto the machine they'll be added to the UMA (User Machine Assignment), therefore when the machine reboots they'll be able to login at POA and at Windows.

Hope that helps Rob!

Hi Toby, 

I have it set this way and it still does not work, any other ideas?

There should be an attachment that shows how I have it configured.

thanks, 

Rob.

PS Machine.docx

Hi Rob,

All looks good from the settings - did you remember to click Save after making that change?
Has the Client machine synced and picked up the settings? If you're not sure try changing it back, clicking save then syncing again, look out for a popup saying "New policies received". Be sure to change it back to "Everybody" when you're done testing and click save then synchronise the client.

If the settings are all getting synced through please run an RSOP for the current user of that machine and just make sure that those settings aren't being overwritten by another policy.

I have tried doing what you requested but it still isn't creating additional users, I have checked RSOP and it is not overwriten it also shows that allow registration of new SGN users is set to Everybody. any other suggestions?

Hi Rob,

What's the status of that first user, are they coming op as Owner or SGN User? You're not using a member of the service account list I presume?

The first user is coming up as Owner, the only other thing that I can see that is different is that the other users have the SGN Windows User check box ticked.

Hi Rob,

That will cause some issues too, try the following:

- Uncheck that option for those users
- Sync the client machine from the Owners account
- Reboot the machine
- Login through POA but uncheck "Pass-through to Windows"
- At Windows login as one of the other users through the SafeGuard tile
- Check their user status

Just make sure those users aren't in the Service Account List (SAL) and that the Specific Machine Settings policy with Allow registration of new SGN users is definitely set to "Everybody".

Hi Toby,

It was not updating the user settings, I have fixed it by deleting the users from the machine in the console and getting them to login again. This has resolved the problem.

Thanks,

Rob.