Skriv
login Konto
Search
Unsupported Browser Detected: Dear user, the browser you’re currently using is not supported by this website. Please click here for more information about the browsers we support and how to obtain them.

Client Security Solution 8.1 - Considerations

Select the symptom that best matches the problem you are experiencing:

Override option refers to a smartcard even though there is no smartcard support
After entering your Windows password to enroll in Client Security Solution, the following error message is displayed: "The user could not be enrolled with Client Security Solution."
Smartcard enrollment process might terminate if incorrect Windows password is entered
Client Security Solution enrolls smartcard devices with expired certificates
Client Security Solution will not authenticate with a smartcard device that has been locked due to too many incorrect authentication attempts
Password Manager is no longer compatible with Mozilla
Client Security Solution will let you override a smartcard or fingerprint device during Windows logon, even if your authentication policy does not permit this
Setup hardware password reset option is not available in the Advanced Features menu of the Client Security Solution application suite
Client Security Solution and fingerprint software might not synchronize your Windows password unless all on-screen prompts are followed
Password Manager appears to not work when launched from the Client Security Solution launcher application in Windows Vista
Login information is not recalled when you cancel the record selection dialog then use the recall hotkey
Rescue and Recovery workspace logon feature of Client Security Solution does not respond when a new user is specified after a previous user's authentication failed
Mozilla Firefox browser unexpectedly closes when a site attempts to open a pop-up window


Symptom

If the Client Security Solution software is installed in Password Manager mode, then there is no smartcard support. However, the text for the override option in the custom policy dialog refers to smartcard support. Although the description refers to a smartcard, the function is not dependent on smartcards in any way. This is merely a text error.

Solution

Ignore the text error.

CMVC Defect #: 391055


Back to top



Symptom

This error occurs on systems that originally had Windows Vista installed but were downgraded to Windows XP. Windows Vista initializes the security device (TPM) in a way that is not compatible with Windows XP. Once Windows Vista has initialized the TPM, Windows XP cannot use the TPM until it has been cleared from the BIOS setup.

Solution

To clear the TPM from the BIOS, do the following:

  1. Turn the computer off.
  2. Turn the computer on and press F1 to enter the BIOS setup menu.
  3. From the Security menu, locate the option to clear the security device. Sometimes it is referred to as the TPM or TCG feature.
  4. Save and exit the BIOS setup menu.
  5. Restart Windows and enroll in Client Security Solution.

The process should complete successfully. Contact Lenovo technical support if the problem persists.

CMVC Defect #: 388966


Back to top



Symptom

If you enter your Windows password incorrectly several times when enrolling a smartcard device with Client Security Solution, the smartcard enrollment process might terminate without prompting you to re-enter your Windows password.

Solution

Enter the correct Windows password when attempting to enroll a smartcard device. If the password entry prompt closes unexpectedly, restart the smartcard enrollment process and enter the correct Windows password when prompted.

CMVC Defect #: 389086


Back to top



Symptom

The smartcard enrollment process will enroll any certificate it finds on a device. The enrollment process does not check whether a certificate is valid or not. However, if the certificate is expired and you enroll it with Client Security Solution, you might not be able to use the certificate to authenticate with Client Security Solution.

Solution

Ensure that your certificate is valid prior to enrolling your smartcard device with Client Security Solution. Contact your smartcard administrator for more information about certificates.

CMVC Defect #: 389373


Back to top



Symptom

Client Security solution will prompt you to insert your smartcard device and enter your smartcard PIN to authenticate. If an incorrect PIN is entered too many times, the smartcard device will be locked and Client Security Solution will display an error message. Once the smartcard is locked, entering the correct PIN will not enable you to authenticate the device. Further attempts to authenticate will result in an "Invalid PIN" error message.

Solution

Contact your smartcard administrator for assistance. Client Security Solution cannot unlock a locked smartcard device.

CMVC Defect #: 389395


Back to top



Symptom

Password Manager is no longer compatible with the Mozilla Web browser. Password Manager is compatible with the latest version of the underlying engine, which is used by newer versions of Firefox, but not by Mozilla.

Solution

Use Firefox or Internet Explorer if you want to use Password Manager with your Web browser.

CMVC Defect #: 390802


Back to top



Symptom

If you have deselected the option for If a fingerprint or smart card reader is not connected or not functioning properly, prompt user for Windows password instead, the Windows logon feature of Client Security Solution will still let you log in with a Windows password instead of the fingerprint or smartcard device specified in your authentication policy.

Client Security Solution permits this to prevent casual users from being locked out of their systems. This is not a security issue because your Windows password is still required to log into Windows, and you will not be able to bypass fingerprint or smartcard authentication for your other Client Security Solution features, such as Password Manager.

Solution

Contact Lenovo technical support for more information on preventing users from logging into Windows in the event that their fingerprint or smartcard device does not work.

CMVC Defect #: 394373


Back to top



Symptom

Hardware Password Reset is only available on select Lenovo systems. If your hardware does not support the feature or if your system does not meet the software criteria, the option will not be available.

Solution

To check hardware availability in the BIOS setup, do the following:

  1. Press F1 when starting your system.
  2. On the Security page, locate Password Management Service. If it is present, the Hardware Password Reset feature is supported on your system.

Check the help files for additional information for supporting the feature such as memory requirements and supported operating systems. Note that this feature is currently not supported by Windows Vista.

CMVC Defect #: 399233


Back to top



Symptom

When your Windows password is changed, both the Client Security Solution and the fingerprint software need to be updated with the new password. If your Windows password has been changed since the last time you logged into Windows, Client Security Solution will prompt for you for your new Windows password. In addition, if you have a system with a fingerprint sensor, Client Security Solution will prompt you to swipe your finger so that the fingerprint software will also be updated with your new Windows password. If you ignore or cancel this fingerprint request, the Fingerprint software will not have your latest Windows password and you might be unable to log into Windows with your fingerprint.

Solution

When Client Security Solution prompts you for your new Windows password, enter it as requested. When Client Security Solution prompts you for your fingerprint in order to update the Windows password, swipe your finger as requested.

If your Windows password is not synchronized with the fingerprint software, re-enroll your finger using the fingerprint enrollment wizard in the Start menu.

CMVC Defect #: 399530


Back to top


Symptom

If you close the Password Manager application and then launch it via the Client Security Solution launcher, the Password Manager application appears to no longer work. This is a Windows Vista issue. Password Manager is launched with Administrator privileges and cannot communicate with standard level applications such as Internet Explorer or Firefox.

Solution

Shut down Password Manager and do one of the following:

  • Restart Password Manager from the run menu or a command prompt by typing password_manager.
  • Log off and log in.
  • Restart the system.

CMVC Defect #: 399703


Back to top



Symptom

If you have multiple tabs open and open a Web page in Internet Explorer 7.0+ that has multiple entries saved for it, Password Manager will not recall your saved information if you cancel the record selection dialog and then attempt to recall the login information again via a hotkey.

Solution

If this problem occurs, do one of the following:

  • If the auto-fill option is set for the record, refresh the web page (F5) to obtain a working record selection dialog.
  • If the auto-fill option is not set for the record, restart Internet Explorer.

CMVC Defect #: 399989


Back to top



Symptom

The following steps might cause an error while attempting to authenticate to the Rescue and Recovery workspace logon:

  1. Login as USER_A with an incorrect password. The authentication attempt fails.
  2. Change from USER_A to USER_B. Enter the correct password for USER_B. The authentication fails even though a valid username and password are entered.
Solution

Once the logon process is started, the username cannot be changed. The logon process continues to attempt to login as the original user even though a different username is entered. To log on as a different user reboot the system then logon.

CMVC Defect #: 400276


Back to top



Symptom

The Password Manager program provided as part of Client Security Solution 8.1 causes the Mozilla Firefox browser to unexpectedly close when a site attempts to open a pop-up window.

When the Password Manager program is used with Internet Explorer, some Web sites prompt users multiple times to swipe their finger or input their password for authentication.

Both of these issues are caused by Password Manager plug-ins. Password Manager files related to these defects require updates.

Solution

Patches to correct these Password Manager defects are now available as ThinkVantage System Update (TVSU) packages, downloadable files from the Lenovo Support Web site, and updated preload modules.

Download the Client Security Solution 8.1 patch for Mozilla Firefox

CMVC Defect #: 406712, 405920


  • Alias ID: MIGR-69232
  • Document ID: HT000641
  • Last Updated :2014-06-17
  • (c) 2014 Lenovo