Symantec Endpoint Encryption 11.x typically supports any generic USB CCID-compatible readers that you connect to a USB 2.0 port, although not all readers are guaranteed to work, or are officially supported. Before deploying to production, ensure the card readers are thoroughly tested to ensure they will work in the production environment. USB 3.0 is supported starting in Symantec Endpoint Encryption 11.1.3 for UEFI systems only.
Smart Cards are supported for BIOS systems beginning with Symantec Endpoint Encryption version 11.0.0 and above, while support for Smart Cards on UEFI systems was added with Symantec Endpoint Encryption version 11.0.1 and above. Current versions of the product support both BIOS and UEFI systems.
Symantec Endpoint Encryption 11.x supports the following Personal Identity Verification (PIV) cards and Answer to Reset (ATR) numbers:
As of version 11.1.2, Symantec Endpoint Encryption supports the following PIV CAC v2 smart cards on systems runnning in BIOS mode:
As of version 11.2.0, Symantec Endpoint Encryption supports the following PIV CAC v2 smart cards:
For more information about the latest Symantec Endpoint Encryption system requirements, see the following articles:
EPG-26617 - PIV Cards for Latitude 7410, 7420 - Dell Precision 3550, 3560
EPG-27004 - Incorrect PIN Entry may see some delays at preboot.