The Sophos Community will be unavailable from 13:00 to 18:00 UTC this Saturday, October 1st for upgrades. Stay tuned to our Twitter account @SophosSupport for updates.
When using fingerprint authentication on a client that is encrypted with BitLocker (non - Lenovo hardware or unsupported Lenovo models) the SafeGuard Authentication Application appears after logon to the operating system.
First seen in SafeGuard BitLocker Client 6.10.0SafeGuard BitLocker Client 7.0
Operating systems Windows 8
Cause An authentication at the SafeGuard Credential Provider or the SafeGuard Authentication Application is only possible on supported Lenovo Clients.
If only the BitLocker client is managed by SafeGuard and access to the keyring is not required (for example when the file based encryption modules like DataExchange, FileShare or CloudStorage are not installed) the appearance of the Authentication Application can be limited using a system policy.
After applying the required system policy, the SafeGuard Authentication Application only appears for user initialization and after password changes.
This behavior is managed through a Policy_S setting called InsistOnSGNAuth (default: true). The corresponding XML (Disable_InsistOnSGNAuthentication.xml) is available in the "Tools\System policies\" folder of the product DVD (or download).
The XML which sets the value to "false" has to be signed with the company certificate.
The location on the client: %ALLUSERSPROFILE%\Utimaco\SafeGuard Enterprise\import
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.