Dell Latitude E6420 Administration Guide - Page 100

System Deployment

Get Dell Latitude E6420 PDF manuals and user guides View all Dell Latitude E6420 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 100 highlights

System Deployment Once you are ready to deploy a computer to a user, plug the computer into a power source and connect it to the network. Use the integrated Intel 82566DM Network Interface Card (NIC). Intel Active Management Technology (Intel AMT) does not work with any other NIC solution. When the computer is turned on, the computer immediately looks for a Setup and Configuration Server (SCS). If the computer finds this server, the Intel AMT capable computer sends a Hello message to the server. NOTE: User must first activate network access either via MEBx or using Intel Activator. DHCP and DNS must be available for the setup and configuration server search to automatically succeed. If DHCP and DNS are not available, then the setup and configuration servers (SCS) IP address must be manually entered into the Intel AMT capable computer's MEBx. The Hello message contains the following information: Provisioning ID (PID) Universally Unique Identifier (UUID) IP address ROM and firmware (FW) version numbers The Hello message is transparent to the end user. 1. In the AMT 7, in the OS, select IMSS. 2. Under the Advanced tab, select Extended System Details. 3. Click Intel ME Information. If Provisioning Mode states "In Provisioning", the hello packets are being sent to provision server in the network. The SCS uses the information in the Hello message to initiate a Transport Layer Security (TLS) connection to the Intel AMT capable computer using a TLS Pre-Shared key (PSK) cipher suite if TLS is supported. The SCS uses the PID to look up the provisioning passphrase (PPS) in the provisioning server database and uses the PPS and PID to generate a TLS Pre-Master Secret. TLS is optional. For secure and encrypted transactions, use TLS if the infrastructure is available. If you do not use TLS, then HTTP Digest is used for mutual authentication. HTTP Digest is not as secure as TLS. The SCS logs into the Intel AMT computer with the username and password and provisions the following required data items: New PPS and PID (for future setup and configuration) TLS certificates Private keys Current date and time HTTP Digest credentials HTTP Negotiate credentials The computer goes from the setup state to the provisioned state, and then Intel AMT is fully operational. Once in the provisioned state, the computer can be remotely managed.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
System Deployment
Once you are ready to deploy a computer to a user, plug the computer into a power source and connect it to the network.
Use the integrated Intel 82566DM Network Interface Card (NIC). Intel Active Management Technology (Intel AMT) does not
work with any other NIC solution.
When the computer is turned on, the computer immediately looks for a Setup and Configuration Server (SCS). If the
computer finds this server, the Intel AMT capable computer sends a
Hello
message to the server.
NOTE:
User must first activate network access either via MEBx or using Intel Activator.
DHCP and DNS must be available for the setup and configuration server search to automatically succeed. If DHCP and DNS
are not available, then the setup and configuration servers (SCS) IP address must be manually entered into the Intel AMT
capable computer's MEBx.
The
Hello
message contains the following information:
Provisioning ID (PID)
Universally Unique Identifier (UUID)
IP address
ROM and firmware (FW) version numbers
The
Hello
message is transparent to the end user.
1. In the AMT 7, in the OS, select IMSS.
2. Under the
Advanced
tab, select
Extended System Details
.
3. Click
Intel ME Information
.
If Provisioning Mode states "In Provisioning", the hello packets are being sent to provision server in the network. The SCS
uses the information in the
Hello
message to initiate a Transport Layer Security (TLS) connection to the Intel AMT capable
computer using a TLS Pre-Shared key (PSK) cipher suite if TLS is supported.
The SCS uses the PID to look up the provisioning passphrase (PPS) in the provisioning server database and uses the PPS and
PID to generate a TLS Pre-Master Secret. TLS is optional. For secure and encrypted transactions, use TLS if the infrastructure
is available. If you do not use TLS, then HTTP Digest is used for mutual authentication. HTTP Digest is not as secure as TLS.
The SCS logs into the Intel AMT computer with the username and password and provisions the following required data items:
New PPS and PID (for future setup and configuration)
TLS certificates
Private keys
Current date and time
HTTP Digest credentials
HTTP Negotiate credentials
The computer goes from the setup state to the provisioned state, and then Intel AMT is fully operational. Once in the
provisioned state, the computer can be remotely managed.