Authentication with client security solution – Lenovo ThinkCentre A51 User Manual
Page 40
• Using the Fingerprint Software logon interface The logon interfaces of both Lenovo Fingerprint Software
and ThinkVantage Fingerprint Software must be enabled. When both fingerprint logon interfaces
are enabled in the Windows 7 operating system, users can swipe their finger on either the fingerprint
keyboard or the integrated fingerprint device to log in.
• Using the Client Security Solution logon interface The Client Security Solution logon interface can be
used instead of the Fingerprint Software logon interfaces. When using the Client Security Solution logon
interface to log in to the Windows operating system with fingerprint authentication, the Fingerprint
Software logon is disabled from the Settings option in the respective Fingerprint Software workspace,
and the Client Security Solution logon interface is configured in the Manage security policies option
from the Client Security Solution Advanced menu.
Notes:
1. The BIOS Reader Priority setting does not apply in this situation. Either device can be used for
logon if both devices are available.
2. Only Client Security Solution 8.3 or later supports this function. For more information, see
“Authentication with Client Security Solution” on page 32.
Authentication with Client Security Solution
Note: The following information applies only to Client Security Solution 8.3 and later. Previous versions
of Client Security Solution do not support the use of the integrated fingerprint device with the fingerprint
keyboard.
When performing an action with Client Security Solution that requires fingerprint authentication, such as
auto-filling a password into a Web site with Password Manager, users must swipe a finger on the fingerprint
keyboard, if it is connected, when prompted. Swipes on the built-in fingerprint device will be ignored if the
fingerprint keyboard is connected. If the fingerprint keyboard is not connected, the integrated fingerprint
sensor must be used.
A registry setting is available to require users to use the built-in fingerprint sensor for authenticating with
Client Security Solution. If this registry entry is set, fingerprint authentication with Client Security Solution
must be done with the built-in sensor, and swipes from the fingerprint keyboard will be ignored.
The registry entry is as below:
[HKLM\Software\Lenovo\TVT Common\Client Security Solution]
REG_DWORD "PreferInternalFPSensor" = 1
The default value of the above registry entry is 0, when fingerprint authentication with Client Security Solution
must be done with the fingerprint keyboard, and swipes on the built-in fingerprint device will be ignored.
This setting may also be changed by using the Client Security Solution Administrative Template file with
group policies for Active Directory.
Notes:
1. When the BIOS Reader Priority setting is set to Internal only, it is recommended to set the registry
entry value to 1. This will enable authentication with Client Security Solution to simulate the setting
for BIOS pre-desktop authentication.
2. The BIOS setting and this registry setting are independent.
32
Fingerprint Software Deployment Guide