Knowledge Center

Supported tokens for authentication in File and Removable Media Protection
Technical Articles ID:   KB89888
Last Modified:  3/21/2018


McAfee File and Removable Media Protection (FRP) 5.0.4

For details of FRP supported environments, see KB81149.


How to interpret the tables
Value Description
USB The token connects via a USB port.
Smart Card The token is a Smart Card that you have to insert in a supported reader to be read by FRP.
Biometric This is a biometric reader, such as a fingerprint reader.
Integration Type
Value Description
Stored Value The information necessary to authenticate a user is stored on the token itself.
PKI The certificate can be found in a PKI store (such as Active Directory) and used to initialize the token by the ePO extension.
Self-Init The certificate is not located in a PKI store. The product initializes the token when the Smart Card is first presented by the user during authentication. The ePO extension would not have seen the card or certificate before it is used for the first time.

Token Smart Card Standards
Value Description
CAC The Common Access Card (CAC) is a United States Department of Defense (DoD) Smart Card, issued as standard identification for active duty military personnel, reserve personnel, civilian employees, other non-DoD government employees, state employees of the National Guard, and eligible contractor personnel.
PIV Federal Information Processing Standard Publication 201 (FIPS 201) is a United States federal government standard that specifies Personal Identity Verification (PIV) requirements for federal employees and contractors.

How to configure and use tokens with FRP
Consult the FRP Product Guide for details on how to configure and use tokens.

For a full list of product documents, go to the ServicePortal at: http://support.mcafee.com. Click Knowledge Center, and select Product Documentation from the Knowledge Base list.

To view any known issues with tokens, see KB85807.

Supported Tokens with FRP
Brand Type Connection Integration Type Notes/Token Type from Policy Support Included
ATOS (Siemens)          
  CardOS 5.3 Smart Card PKI
Siemens CardOS PKI Smart Card FRP 5.0.4
  CardOS 4.4 Smart Card PKI
Siemens CardOS PKI Smart Card FRP 5.0.4

What version of middleware is required?
Customers who want to use the Smart Card at the Windows logon will need to install the middleware for Windows to support the Smart Card in use.

If my token is not in the list, is it still supported?
As a general rule, if a token is not listed in this document, it is unsupported.
If you require a new token to be supported, submit a product idea. Product ideas are directed to Product Management. For details, see the Related Information section.

If a combination of a supported reader and a supported token is not working as expected, contact Technical Support to investigate. For details, see the Related Information section.

What happens if my token is in the supported list but the token does not work?
Contact Technical Support and open a Service Request for the issue. McAfee will review the way your environment is configured and will conduct further research to investigate the issue if your environment matches the required settings. As a possible outcome, McAfee might request that you submit a product idea (see "Submit a product idea in the Related Information section below).

Rate this document

Beta Translate with

Select a desired language below to translate this page.

Glossary of Technical Terms

 Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.