[KB8751] Unable to log in using SSO in ESET Endpoint Encryption after Windows 11 24H2 upgrade

Issue

• You have ESET Endpoint Encryption (EEE) version 5.2.54.0 or earlier and upgraded to Windows 11 24H2 and are unable to log in using Single Sign-On (SSO) 
• You receive "The password is incorrect. Try again.” after entering the SSO username and password into the EEE Pre-boot login

Solution

In Windows 11 24H2, the inclusion of a password payload in MPR notifications is set to disabled by default through the group policy in the NPLogonNotify and NPPasswordChangeNotify APIs, which EEE version 5.2.54.0 and earlier utilized for SSO. EEE version 5.3.71.0 and later no longer uses the NPLogonNotify and NPPasswordChangeNotify APIs. 

1. Log in with the Admin FDE password to bypass the EEE Pre-boot login. If you do not have the Admin FDE password, reset the password.

2. Log in to your Windows Profile.

3. Download and upgrade to EEE version 5.3.71.0 or later.

4. Restart EEE.

5. The notification "The password is incorrect. Try again.” will display again. Reset the password.

6. After resetting the password, log in with the Windows Profile associated with the SSO User to synchronize the password.

7. Restart the system and type the SSO username and password into the EEE Pre-boot login.