To install the encryption software locally:
- Log on to the endpoint as an administrator.
Copy the SGNClient_x64.msi package and the
SGxClientPreinstall.msi package to the client.
Install the SGxClientPreinstall.msi package to provide the
endpoint with the necessary requirements for a successful installation of
the current encryption software.
As an alternative to the SGxClientPreinstall.msi, you can
install the Microsoft vcredist_x86.exe package that is also
available in the product delivery.
Install the vcredist14_x86.exe from the product
Download the current POACFG file as described in Sophos knowledgebase article
Save the latest version of the POACFG file centrally so that it is
accessible from every endpoint.
Open a new administrative command line box on the client.
Change to the folder containing the SafeGuard installation files.
Start the installation using this command: MSIEXEC /i
<client.msi> POACFG=<path of the POA configuration
The SafeGuard Enterprise Client installation wizard
- In the wizard, accept the defaults on all subsequent dialogs.
In a first-time installation, we recommend that you select a
Complete installation from the start. To only
install a subset of features, choose a Custom
Go to the location where you saved the relevant configuration package (MSI)
created beforehand in the SafeGuard Management Center. Specific
configuration packages need to be installed for managed and unmanaged
endpoints, see Creating configuration packages.
- Install the relevant configuration package (MSI) on the computer.
To activate Power-on Authentication, restart the endpoint twice.
Restart once more to perform a backup of the kernel data on every Windows
boot. Make sure that the computer is not put into hibernation, sleep or
hybrid sleep mode before the third restart to successfully complete the
SafeGuard Enterprise is set up on the endpoint. For more information on the computer's logon
behavior after SafeGuard Enterprise installation, see the SafeGuard Enterprise user