RSA SID800 usage at Power-on Authentication (POA)
Known to apply to the following Sophos product(s) and version(s)
SafeGuard Device Encryption
SafeGuard Device Encryption 5.60.0
Windows Vista, Windows 7
What To Do
1. Install the correct middleware
From the various packages released by RSA, ensure that you install "RSA Smart Card Middleware" (RSA Smart Card Middleware 3.5.4 msi or RSA Smart Card Middleware 3.5.4 x64.msi) not the "RSA Authentication Client".
Only the middleware portion of the RAC should be installed to prevent any conflict between the RSA and Sophos Credential Provider.
2. Install drivers for the token
Depending on the OS, drivers for the SID 800 tokens may need to be manually installed.
3. Install a required Microsoft Patch (Vista SP2 only)
Due to known issues with handling of older SID 800 tokens, you must install this Microsoft patch http://support.microsoft.com/kb/951373 on all Vista >=SP2 systems (not Windows 7).
A change in a timeout constant in usbccid.sys occurred in SP2. The timeout was changed from infinite, to 5s, and this figure was out of spec and too small for older SID800 tokens.
4. Follow the required configuration steps for token/smartcard usage that are described in the "Administrator Help" manual that comes with the product media.