SafeGuard Enterprise Device Encryption: Preparing the system for RSA SID800 usage at Power-on Authentication (POA)

  • Article ID: 112645
  • Rating:
  • 1 customers rated this article 2.0 out of 6
  • Updated: 01 Dec 2014

RSA SID800 usage at Power-on Authentication (POA)

Known to apply to the following Sophos product(s) and version(s)

SafeGuard Device Encryption 5.60.0
SafeGuard Device Encryption

Operating systems
Windows Vista, Windows 7

What To Do

1. Install the correct middleware  
From the various packages released by RSA, ensure that you install "RSA Smart Card Middleware" (RSA Smart Card Middleware 3.5.4 msi or RSA Smart Card Middleware 3.5.4 x64.msi) not the "RSA Authentication Client".

Only the middleware portion of the RAC should be installed to prevent any conflict between the RSA and Sophos Credential Provider.

2. Install drivers for the token
Depending on the OS, drivers for the SID 800 tokens may need to be manually installed.

3. Install a required Microsoft Patch (Vista SP2 only)
Due to known issues with handling of older SID 800 tokens, you must install this Microsoft patch on all Vista >=SP2 systems (not Windows 7).

Background information:
A change in a timeout constant in usbccid.sys occurred in SP2. The timeout was changed from infinite, to 5s, and this figure was out of spec and too small for older SID800 tokens.

4. Follow the required configuration steps for token/smartcard usage that are described in the "Administrator Help" manual that comes with the product media.

If you need more information or guidance, then please contact technical support.

Rate this article

Very poor Excellent