This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Samsung S6 Fingerprint not working after MDM installed..

We have several users that were able to use the S6 fingerprint reader before installing Sophos MDM. After install, this feature is grayed out. I have changed the passcode requirements, and verified the devices are compliant. I don’t see a specific setting to allow/disallow this feature in our Android Profile or Policies. Is there another setting I need to enable? Thank you for your time.

This thread was automatically locked due to age.

0 BrucekConvergent over 8 years ago

I would suggest starting a support case. My guess is that SMC does not support the use of a fingerprint reader -- it's not a "password type" in the profile configuration in SMC. This may be purposeful (if they are worried about the strength of the fingerprint reader).

CTO, Convergent Information Security Solutions, LLC

https://www.convergesecurity.com

Sophos Platinum Partner

--------------------------------------

Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries. Use the advice given at your own risk.
Cancel
Vote Up 0 Vote Down

Cancel
0 Anubis over 8 years ago

Hi BryanHafer. When you are setting up the Password policies try selecting Any in the Password Type. See if that works.
AnubisG

Anubis

Community Support Engineer | Sophos Support

Sophos Support Videos | Knowledge Base | Documentation | @SophosSupport | Sign up for SMS Alerts |

If a post solves your question use the 'This helped me' link
Cancel
Vote Up 0 Vote Down

Cancel
0 Port StephensCouncil over 8 years ago

Any progress on these issue?

We upgraded to version 5.1.7 based on this article www.sophos.com/.../122450.aspx which says "Other improvements -- Support for Samsung fingerprint authentication on the devices". However the issue remains.

Users get the following; "fingerprint option is disabled by administrator, encryption policy, or credential storage."
Cancel
Vote Up 0 Vote Down

Cancel
0 Port StephensCouncil over 8 years ago in reply to Port StephensCouncil

Also tried changing the password type to Any with no luck.
Cancel
Vote Up 0 Vote Down

Cancel
0 SDU over 8 years ago

Hi Paul, Bryan

sorry for the late reply on that topic.
According to Google's definition, a fingprint equals a 3 digit pin.
Therefore, it might be that the password rules may be adjusted accordingly.

Please be aware: If your devices synchronize emails using ActiveSync the Exchange ActiveSync mailbox policy comes into play here as well and has effect on the devices if you have a passcoded configured in there. The more secure policy is applied.

Best regards
Stefan
Cancel
Vote Up 0 Vote Down

Cancel
0 JafferyHansell over 8 years ago

I found the same issue with the S5. I have only had this system up for a few hours and still digging around but have yet to see anything that states password strength requirements.
Cancel
Vote Up 0 Vote Down

Cancel
0 JafferyHansell over 8 years ago in reply to JafferyHansell

Never mind I found the password settings. I tried every combo that I can think of and there is no getting the print login back without disabling the entire section.
Cancel
Vote Up 0 Vote Down

Cancel
0 itps4u over 7 years ago in reply to SDU

Is this really the recommended way? Setting a 3 digit pin... Is there no other option?

For reference:
This happens only on Samsung devices it seems. Tried a Vernee Thor with Android 6 and a Huawei ShotX with Android 5.1 and both let me have a 6 digit pin and fingerprint as the option to unlock the device (with encryption enabled).

So why is this a problem with Samsung devices?
Cancel
Vote Up 0 Vote Down

Cancel