HOW TO: Use Multiple Single Sign-On Users on one Computer - PGP Desktop 10
|Article:HOWTO42085|||||Created: 2009-09-01|||||Updated: 2011-03-29|||||Article URL http://www.symantec.com/docs/HOWTO42085|
This article details how to use the Single Sign-On feature of PGP Whole Disk Encryption for multiple user on a single computer.
The PGP Whole Disk Encryption Single Sign-On (SSO) feature synchronizes the PGP Whole Disk Encryption authentication passphrase with the Microsoft Windows password when a user boots a computer. This allows you to type your Windows password at the PGP BootGuard and then you are automatically logged into your Windows account.
You can configure multiple users on one system for Single Sign-On up to 28 users. PGP Corporation, however, recommends limiting the number of Single Sign-On users to the fewest possible persons who must share the system. While technically feasible to do so, a large number of users sharing a single, encrypted computer is not a secure solution, and PGP Corporation discourages this practice.
|Note: The Single Sign-On feature is passphrase-only; you cannot utilize Single Sign-On with users' keys, nor is the feature compatible with smart cards or tokens.|
To add an additional PGP WDE user
- Open PGP Desktop.
- Click the PGP Disk Control box, then click Encrypt Whole Disk or Partition.
- In the User Access section, click Windows User.
- For User Type, select Use Windows Password then click Next.
- Click Next and then enter a password for the user.
- Click Next and Finish.
Having multiple users who can access a disk or partition protected by PGP Whole Disk Encryption serves as a backup in case one person forgets their passphrase or loses their authentication token. Users configured for an encrypted disk or partition can authenticate to the PGP Whole Disk Encryption log-in screen to unlock any protected disk or partition on that system.
Article URL http://www.symantec.com/docs/HOWTO42085