I want to ask you for help with Pre-Boot login, especially with Single-Sign On. I set All disks encryption . My EEPC policy on Log On Tab is followed:
Enable automatic booting - disabled
Do not display previous user name at log on - enabled
Enable on screen keyboard - enabled
Add local domain users (and tag with EE:ALDU) - enabled: Add all previous and current local domain users of the system
Enable Accessibility - disabled
Disable pre-boot authentication when not synchronized - disaled (unchecked)
Enable SSO - enabled
Must match user name - enabled
Using smart card PIN - disabled
Synchronized EE password with Windows - enabled
Allow user to cancel SSO - enabled
Require EE logon - disabled
Lock workstation when inactive - enabled (after 10 minutes)
As for UBP, token type is password only, default password was chenged and is used, password history are is disabled, also prevent change. Self-Recovery is enabled, NO. of invalid attempts is set to 3 and 3 recovery questions are used.
Another settings are not important in connection with my issue (I think so. But I can specify them if anyone wants)
Now , my problem. SSO in Pre-Boot authentification behaves strangely. Synchronization with Win password doesn't work. For example, when I change password in Pre-Boot (synchronization with Win password is turned on), I am logged directly to Windows. After restart is same situation. Pre-Boot ignores sync and log me with his password diectly to Windows.
Another problem is first authentication after installing and activation of EEPC and when encryption starts. At this point, I restart PC, in Pre-Boot authentication enter user name (obtained from LDAP), but then EEPC doesn't aply default password (12345) but he want only my Pre-Boot password (which I created earlier on this machine. But EEPC was completely uninstalled from this machine). I tried many variants but with no success.
Please, can you tell me what I do wrong ?