Select the symptom that best matches the problem you are experiencing:
If the Client Security Solution software is installed in Password Manager mode, then there is no smartcard support. However, the text for the override option in the custom policy dialog refers to smartcard support. Although the description refers to a smartcard, the function is not dependent on smartcards in any way. This is merely a text error.
Ignore the text error.
CMVC Defect #: 391055
This error occurs on systems that originally had Windows Vista installed but were downgraded to Windows XP. Windows Vista initializes the security device (TPM) in a way that is not compatible with Windows XP. Once Windows Vista has initialized the TPM, Windows XP cannot use the TPM until it has been cleared from the BIOS setup.
To clear the TPM from the BIOS, do the following:
- Turn the computer off.
- Turn the computer on and press F1 to enter the BIOS setup menu.
- From the Security menu, locate the option to clear the security device. Sometimes it is referred to as the TPM or TCG feature.
- Save and exit the BIOS setup menu.
- Restart Windows and enroll in Client Security Solution.
The process should complete successfully. Contact Lenovo technical support if the problem persists.
CMVC Defect #: 388966
If you enter your Windows password incorrectly several times when enrolling a smartcard device with Client Security Solution, the smartcard enrollment process might terminate without prompting you to re-enter your Windows password.
Enter the correct Windows password when attempting to enroll a smartcard device. If the password entry prompt closes unexpectedly, restart the smartcard enrollment process and enter the correct Windows password when prompted.
CMVC Defect #: 389086
The smartcard enrollment process will enroll any certificate it finds on a device. The enrollment process does not check whether a certificate is valid or not. However, if the certificate is expired and you enroll it with Client Security Solution, you might not be able to use the certificate to authenticate with Client Security Solution.
Ensure that your certificate is valid prior to enrolling your smartcard device with Client Security Solution. Contact your smartcard administrator for more information about certificates.
CMVC Defect #: 389373
Client Security solution will prompt you to insert your smartcard device and enter your smartcard PIN to authenticate. If an incorrect PIN is entered too many times, the smartcard device will be locked and Client Security Solution will display an error message. Once the smartcard is locked, entering the correct PIN will not enable you to authenticate the device. Further attempts to authenticate will result in an "Invalid PIN" error message.
Contact your smartcard administrator for assistance. Client Security Solution cannot unlock a locked smartcard device.
CMVC Defect #: 389395
Password Manager is no longer compatible with the Mozilla Web browser. Password Manager is compatible with the latest version of the underlying engine, which is used by newer versions of Firefox, but not by Mozilla.
Use Firefox or Internet Explorer if you want to use Password Manager with your Web browser.
CMVC Defect #: 390802
If you have deselected the option for If a fingerprint or smart card reader is not connected or not functioning properly, prompt user for Windows password instead, the Windows logon feature of Client Security Solution will still let you log in with a Windows password instead of the fingerprint or smartcard device specified in your authentication policy.
Client Security Solution permits this to prevent casual users from being locked out of their systems. This is not a security issue because your Windows password is still required to log into Windows, and you will not be able to bypass fingerprint or smartcard authentication for your other Client Security Solution features, such as Password Manager.
Contact Lenovo technical support for more information on preventing users from logging into Windows in the event that their fingerprint or smartcard device does not work.
CMVC Defect #: 394373
Hardware Password Reset is only available on select Lenovo systems. If your hardware does not support the feature or if your system does not meet the software criteria, the option will not be available.
To check hardware availability in the BIOS setup, do the following:
- Press F1 when starting your system.
- On the Security page, locate Password Management Service. If it is present, the Hardware Password Reset feature is supported on your system.
Check the help files for additional information for supporting the feature such as memory requirements and supported operating systems. Note that this feature is currently not supported by Windows Vista.
CMVC Defect #: 399233
When your Windows password is changed, both the Client Security Solution and the fingerprint software need to be updated with the new password. If your Windows password has been changed since the last time you logged into Windows, Client Security Solution will prompt for you for your new Windows password. In addition, if you have a system with a fingerprint sensor, Client Security Solution will prompt you to swipe your finger so that the fingerprint software will also be updated with your new Windows password. If you ignore or cancel this fingerprint request, the Fingerprint software will not have your latest Windows password and you might be unable to log into Windows with your fingerprint.
When Client Security Solution prompts you for your new Windows password, enter it as requested. When Client Security Solution prompts you for your fingerprint in order to update the Windows password, swipe your finger as requested.
If your Windows password is not synchronized with the fingerprint software, re-enroll your finger using the fingerprint enrollment wizard in the Start menu.
CMVC Defect #: 399530
If you close the Password Manager application and then launch it via the Client Security Solution launcher, the Password Manager application appears to no longer work. This is a Windows Vista issue. Password Manager is launched with Administrator privileges and cannot communicate with standard level applications such as Internet Explorer or Firefox.
Shut down Password Manager and do one of the following:
- Restart Password Manager from the run menu or a command prompt by typing password_manager.
- Log off and log in.
- Restart the system.
CMVC Defect #: 399703
If you have multiple tabs open and open a Web page in Internet Explorer 7.0+ that has multiple entries saved for it, Password Manager will not recall your saved information if you cancel the record selection dialog and then attempt to recall the login information again via a hotkey.
If this problem occurs, do one of the following:
- If the auto-fill option is set for the record, refresh the web page (F5) to obtain a working record selection dialog.
- If the auto-fill option is not set for the record, restart Internet Explorer.
CMVC Defect #: 399989
The following steps might cause an error while attempting to authenticate to the Rescue and Recovery workspace logon:
- Login as USER_A with an incorrect password. The authentication attempt fails.
- Change from USER_A to USER_B. Enter the correct password for USER_B. The authentication fails even though a valid username and password are entered.
Once the logon process is started, the username cannot be changed. The logon process continues to attempt to login as the original user even though a different username is entered. To log on as a different user reboot the system then logon.
CMVC Defect #: 400276
The Password Manager program provided as part of Client Security Solution 8.1 causes the Mozilla Firefox browser to unexpectedly close when a site attempts to open a pop-up window.
When the Password Manager program is used with Internet Explorer, some Web sites prompt users multiple times to swipe their finger or input their password for authentication.
Both of these issues are caused by Password Manager plug-ins. Password Manager files related to these defects require updates.
Patches to correct these Password Manager defects are now available as ThinkVantage System Update (TVSU) packages, downloadable files from the Lenovo Support Web site, and updated preload modules.
CMVC Defect #: 406712, 405920