The ZENworks PBA supports the following authentication methods:
Standard user ID/password authentication
Smart card authentication based on the X.509, PKCS#11, and PC/SC standards
Both methods support the user capturing and single sign-on functionality discussed in the next two sections.
A user’s credentials (either user ID/password or smart card) must be added to the ZENworks PBA. You can add credentials via the Disk Encryption policy applied to the device, or you can enable the credentials to be captured by the ZENworks PBA the first time it starts after installation. This second method, referred to as user capturing, is the recommended method, especially when using smart card authentication, because it increases the accuracy of correctly defining the user’s credentials.
The ZENworks PBA login does not replace the Windows login. A user must log in to the ZENworks PBA and in to Windows. You can, however, enable single sign-on so that the user only enters credentials during the ZENworks PBA login and is automatically logged in to Windows with those same credentials. This requires that the ZENworks PBA credentials match the Windows credentials.