To resolve this issue, Pulse Secure credential provider (CP) GUID's must be added to the whitelist. As the CP GUID's may change between versions, please refer to the Pulse Secure Desktop Client Client-Side Changes Guide to confirm the correct GUID string.Pulse Secure provides four GUIDs for each credential provider option:
Credential Provider Name | Description |
---|
Pulse Secure SSO Password Credential Provider Class | This is used for standard username & password authentication |
Pulse Secure SSO Smartcard Credential Provider Class | This is used for smart card authentication |
Pulse Secure SSO OneX Smartcard Credential Provider Class | This is used for 802.1x authentication with smart card |
Pulse Secure SSO OneX Password Credential Provider Class | This is used for 802.1x authentication with username & password |
For example, the following GUID's (highlighted in
RED) appear in the 5.2R3 Client-Side Changes document:
[HKEY_CLASSES_ROOT\CLSID\{4B9CAC01-6732-40d0-8B8F-B5B340F9D44F}]
@="Pulse Secure SSO OneX Password Credential Provider Class"
[HKEY_CLASSES_ROOT\CLSID\{4EFD0F35-BFBA-44eb-8F25-2B3530203C1D}]
@="Pulse Secure SSO Password Credential Provider Class"
[HKEY_CLASSES_ROOT\CLSID\{C1258FBC-F04F-4862-B78A-DDAAEF4A9707}]
@="Pulse Secure SSO OneX Smartcard Credential Provider Class"
[HKEY_CLASSES_ROOT\CLSID\{EAB1A79F-DFAA-4faf-A7B9-A6652E97EE16}]
@="Pulse Secure SSO Smartcard Credential Provider Class"
DISCLAIMER: McAfee does not directly support third party credential providers. For more information about this limitation and how to file a enhancement request to add Pulse Secure GUID by default, please refer to the following
McAfee KB article. Pulse Secure support has found these instructions to work, but McAfee may change this behavior anytime in the future without notification.
For McAfee Endpoint Encryption or Drive encryption, all CP's are filtered out by default. To allow a Pulse Secure CP, modify the DE/EEPC
EpePcCp.ini file. In this example, the added GUID is for Pulse Secure SSO Password Credential Provider.
[CredentialProvider.Filter.Providers]
{4EFD0F35-BFBA-44eb-8F25-2B3530203C1D}=Enable