Windows Password not Synchronized with PGP BootGuard

Article:TECH149367  |  Created: 2009-04-02  |  Updated: 2013-05-08  |  Article URL http://www.symantec.com/docs/TECH149367
Article Type
Technical Solution


Issue



After changing your Windows password when using the PGP WDE Single Sign-On (SSO) feature, the password is not synchronized with PGP BootGuard and you must use the old password to authenticate at the PGP BootGuard and Single Sign-On no longer functions properly.


Solution



This can be caused by a file permission limitation on the PGPWDE01 file or by the location of the PGP entry in the Provider Order list for Network providers in Windows.

To check PGPWDE01 file permissions

If the SSO feature fails after changing your Windows password, check the permissions for the PGPWDE01 file located in the root of the C: drive.

The Authenticated Users group needs to have Modify permissions for the PGPWDE01 file. If necessary, modify the permissions for the file, logging off and logging back on to Windows will cause the PGP Tray to update the PGPWDE01 file.

  1. Open Windows Explorer or double-click My Computer.

    Note: For Windows Vista, open Windows Explorer, if the Advanced menu is not displayed, press ALT and the Advanced menu bar appears. Windows Vista may prompt your for your permission to continue.

     
  2. Click Tools then select Folder Options.
  3. Click the View tab.
  4. Scroll down and remove the checkmark next to Hide protected operating system files (Recommended)
  5. Click Yes when prompted with the warning then click OK to apply the change.
  6. Browse to the C: drive and locate the PGPWDE01 file.
  7. Right-click the PGPWDE01 file and select Properties.
  8. Click the Security tab and add Authenticated Users with Modify permissions if needed.

 

PGP Network Provider Connection

In some cases, other third party Network provider connections may interfere with the SSO feature of PGP WDE. Try moving the PGP Network Provider connection above other third-party connections in the Network Provider Order. Use the steps below for your operating system.

Windows XP

  1. Right-click My Network Places and select Properties. or click Start>Control Panel and then double-click Network Connections.
  2. Click the Advanced menu and then select Advanced Settings.
  3. Click the Provider Order tab.
  4. Under Network Providers, select the PGPpwflt entry, and click the Up arrow to move the PGP connection above any other third-party connections in the list.
  5. Click OK to apply the changes.

 

Windows Vista & Windows 7

  1. Click Start>Network.
  2. Select Network and Sharing Center.
  3. From the Tasks panel, click Manage network connections.
  4. Highlight your Local Area Connection.
  5. Click Advanced>Advanced Settings.

    Note:If the Advanced menu is not displayed, press ALT and the Advanced menu bar appears. Windows Vista may prompt your for your permission to continue.

     
  6. Select the Provider Order tab.
  7. Click the entry PGPpwflt.
  8. Click the up arrow to move PGP above any other third-party connections.
  9. Click OK to apply the settings.

 

USB disk or SD card

If a USB thumb drive or SD card is inserted, a conflict may occur if the USB or SD disk is detected as Disk 0 on the system. Confirm the Windows system disk is Disk 0 in Disk Management. If the USB or SD disk displays as Disk 0, remove the disk, reboot the computer, and then change the Windows password.



Legacy ID



1318


Article URL http://www.symantec.com/docs/TECH149367


Terms of use for this information are found in Legal Notices