This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Knowledge Base

Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID experts.

RSA Authentication Agent 7.3.3 for Windows prompt does not appear after the first reboot of Windows 10 when McAfee SafeBoot is installed

Article Number

000036049

Applies To

RSA Product Set: SecurID
RSA Product/Service Type: Authentication Agent for Windows
RSA Version: 7.3.3

Issue

The following  behavior occurs:
  • When McAfee SafeBoot (now known as McAfee Drive Encryption [DE]) is installed on a machine running Windows 10 that also has the RSA  Authentication Agent 7.3.3 installed, every time the machine is booted. the RSA SecurID prompt does not display.
  • Once logged in, if a user locks the machine and unlocks it, it starts prompting for RSA SecurID credentials and the user authenticates successfully.
  • Subsequent logins work as  expected.
  • The SecurID prompt does not appear after the first reboot on Windows 10.
  • Tried changing the Credential Manager setting and enabling Exclude the Third-party Credential Providers.
  • This behavior has been tested on multiple machines and recreated consistently.
Current settings are:
  • Exclude the Microsoft Password Credential Provider = Not configured
  • Exclude the RSA Credential Provider for disconnect auth = Not configured
  • Exclude the RSA Smart Card Credential Provider = Not configured
  • Exclude the Third-party Credential Providers = Enabled
  • The auto registration client is installed.

Cause

Based on the article entitled Single Sign On fails on systems that have third-party credential providers installed in the McAfee Knowledge Center, there is a known McAfee issue that the McAfee provider named MfeEpeCredentialProvider is not compatible with third-party credential providers.  Here's an excerpt:from that article:
 
DE/EEPC does not currently support any third-party Windows credential provider integrations. These third-party credential providers are conflicting with the DE/EEPC credential provider because, on Windows systems, it is not possible to chain the DE/EEPC credential provider.

Resolution

The fact that the RSA credential tile does not appear during the first logon after a reboot is not within the control of the RSA Authentication Agent. In all  cases the RSA Authentication Agent returns a credential tile to LogonUI normally.  The fact that it is not displayed is (probably) because the SafeBoot product is filtering third party credential providers on the first logon after reboot.

The customer needs to engage McAfee to find a workaround. It might be possible to configure SafeBoot to not use its' MfeEpeCredentialProvider, but that needs to be handled by McAfee.

The RSA Authentication Agent 7.3.3 for Windows is functioning as designed.
0 Likes
Was this article helpful? Yes No
No ratings

In this article

Version history
Last update:
‎2020-12-12 09:43 PM
Updated by:
Administrator Administrator

Related Content

© 2023 RSA Security LLC or its affiliates. All rights reserved.