Using Service Accounts names in SafeGuard Enterprise
Known to apply to the following Sophos product(s) and version(s)
SafeGuard Enterprise Management Center, as of 220.127.116.11,
SafeGuard Enterprise Device Encryption, as of 18.104.22.168
All supported Operating System versions
What To Do
You want to use a “Service account lists for Windows logon” feature in SafeGuard Enterprise (as of version 22.214.171.124). Because of the SGN design, a user has to log on to Windows as that user is defined in the Service Account list.
As an example, you add a user in the Service Accounts list with a Fully Qualified Domain Name (FQDN), this user must use the FQDN to log on to Windows. If in the Service Accounts list the user is defined.
Asterisks are only allowed as the first sign, the last sign and the only sign. Following are examples:
For valid and invalid strings using asterisks:
· Valid strings are for example admin*, *, *strator, *minis*.
· Invalid strings are for example **, Admin*trator, Ad*minst*.
Furthermore the following restrictions apply:
· The character ? is not allowed in user logon names.
· The characters / \ [ ] : ; | = , + * ? < > " are not allowed in domain names.