SafeGuard Easy multi-platform 4.5x
Windows 2000 Professional, Windows XP Home Edition
The generated Response Code is not accepted at the Pre-boot Authentication (PBA). There has not been an error typing it in. How exactly does "Issue abbreviated C/R code" work?
There should be at least three SafeGuard Easy users on the computer on which this function should be used. If you are only using the SYSTEM and USER standard users it is not possible to use this function. It is also not possible for a user with the "Issue abbreviated C/R code" right to first generate a challenge for himself in the PBA and then generate a response code on a second computer.
Purpose: Let's suppose that a company has outsourced its IT support to a service provider. The password for the SYSTEM user remains under lock and key. The service provider's helpdesk only gets the SafeGuard Easy user's user ID and password with the right "Issue abbreviated C/R code". This guarantees that the sensitive SYSTEM password is not issued to an external company and that the service provider can still help the end users when required.
A SafeGuard Easy user for whom the "Issue abbreviated C/R code" option is active must also have at least the "Change user settings" right. If there are other SafeGuard Easy users (apart from SYSTEM) who have additional rights, the user who has the "Issue abbreviated C/R code" option must have at least (!) the same rights.
The end user has the right to switch floppy encryption on and off and has forgotten his SGE password. However the SafeGuard Easy user for the Helpdesk only has the right to change user settings. If the Helpdesk now resets the user's password or wants to make a one-time login possible the response code generated for the user is rejected!
Reason: Although the Helpdesk Account has the right to reset the password they do not have the right to switch floppy encryption on and off.