This article provides information on how Sophos provides monthly updates to the SafeGuard Enterprise client installer DB file of hardware details.
First see in
SafeGuard Device Encryption
To avoid hardware related issues at Power On Authentication (POA) level, the installer of Sophos SafeGuard Enterprise, checks several hardware conditions, including, for example, the BIOS version, hardware model, etc. By comparing these against the existing DB file, the installer can determine if your system requires non-default POA settings applied.
The Client msi package includes a DB file containing details of computers for which information was available at the time of the release. This file can be customized to reflect the hardware of a particular environment.
The latest database file can be downloaded from here:
Protocol: FTP over explicit TLS/SSL
If you are experiencing problems access the location, refer to the article 113454.
As of SafeGuard Enterprise version 5.60 there are different versions of the POACFG file available to download. Please use the one corresponding to the client msi version that you want to install.
With an installation via msiexec parameter, the file will be saved to a location such as: MSIEXEC /i <client.msi> POACFG=<absolute path of the POA configuration file>
MSIEXEC /i c:\SGN\SGNclient.msi POACFG=c:\SGN\MyCustomPOA.xml
When a customized configuration database file is defined, only this file will be used (not the built-in database file). The default database file is only applied when no file is defined or found. Furthermore when using a customized configuration database file placed on a network share the share needs to be mapped to a drive letter to use it with the POACFG parameter.
During the upgrade of an already installed SafeGuard Device Encryption Client, the POACFG file has no effect on the currently defined POA settings.