SD-36667 - SecureDoc Profile settings for Number of Failed Logins at Windows and failed authentication attempts at Pre-Boot have been split into two settings. Important: Please read.
Version Affected: SecureDoc 8.6
Important Limitation
The SecureDoc Profile settings for Number of Failed Logins at Windows has been decoupled from failed authentication attempts at Pre-Boot. These have been split into two settings. Customers should verify all Profiles after updating to V8.6 before deploying Profile changes to endpoint devices
Permanent Auto-Boot has a security feature that will protect the device against excessive failed login attempts at Windows logon. In previous versions, this setting was tied to the number of failed login attempts for BitLocker, but in this version the two configurations have been separated into distinct UI configuration elements so they can be treated/configured as separate.
For any profiles using Permanent Auto-Boot, please set the desired threshold for failed login attempts at Windows using the Profile's General Panel option entitled: "Protect Device against repeated failed login attempts at Windows Logon"
The existing Pre-Boot focused protection for failed logins at Pre-Boot remains in place, but is now focused SOLELY on authentication at Pre-Boot, rather than having a blended functionality that many customers found confusing.
Please verify that each of these settings has the desired threshold setting to ensure that your client deployments (and updated Profiles) continue to provide the desired stringency/protection against failed authentication attempts.