User Authentication (OneCheck) Status Reports

  • Pre-boot Access Status - Shows the status of the Full Disk EncryptionClosed A component on Endpoint Security Windows clients. This component combines Pre-boot protection, boot authentication, and strong encryption to make sure that only authorized users are given access to information stored on desktops and laptops. Acronym: FDE. Pre-bootClosed Authentication before the Operating System loads. on each endpoint computer. The status categories are:

    • Pre-boot Enabled

    • Pre-boot Disabled (WIL)

    • Pre-boot Temporarily Disabled (WOL)

    • Not running

    • Status information is missing

    • Not Installed - Full Disk Encryption is not installed on the endpoint.

  • Pre-boot Access Troubleshooting -Shows users and computers that require troubleshooting for Pre-boot authentication. The issues are divided into two categories: user settings or Smart Card drivers on the computer.

    • Computers with Smart Card driver issues. The status can be:

      • No Smart Card users configured, no drivers installed

      • No drivers installed, Smart Card users configured

      • Driver mismatch

    • Users with password issues or certificate issues. The status can be:

      • Password not configured

      • Certificate not configured

      • Certificate not valid

      • Certificate does not meet requirements

  • Pre-boot Authentication Methods - Shows users' configured Pre-boot authentication method and how they last authenticated. You can sort the results by the configured authentication method. The columns in the report are:

    • Method Used - The Pre-boot authentication method that the user last used.

    • Method Configured - The Pre-boot authentication method configured for the user. This is the configured global Pre-boot Authentication Settings, or if overridden, the user's settings.

    • Method Configured at - When the configured method was configured.

    • Last Pre-boot Authentication - When the user last authenticated to an Endpoint Security client computer.

    • Grace Period Enabled - If a new authentication method is configured, do users have a period of time that they can still authenticate with the previous method.

    • Grace Period Active - Is the grace period active at this time for this user.