HP Dc5700 HP ProtectTools Security Manager Guide - Page 8

Understanding Security Roles, Managing ProtectTools Passwords

Get HP Dc5700 - Compaq Business Desktop PDF manuals and user guides
UPC - 882780819535
View all HP Dc5700 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 8 highlights

Understanding Security Roles In managing computer security (particularly for large organizations), one important practice is to divide responsibilities and rights among various types of administrators and users. NOTE In a small organization or for individual use, these roles may all be held by the same person. For ProtectTools, the security duties and privileges can be divided into the following roles: ● Security officer-Defines the security level for the company or network and determines the security features to deploy, such as Java Cards, biometric readers, or USB tokens. NOTE Many of the features in ProtectTools can be customized by the security officer in cooperation with HP. For more information, visit http://www.hp.com. ● IT administrator-Applies and manages the security features defined by the security officer. Can also enable and disable some features. For example, if the security officer has decided to deploy Java Cards, the IT administrator can enable Java Card BIOS security mode. ● User-Uses the security features. For example, if the security officer and IT administrator have enabled Java Cards for the system, the user can set the Java Card PIN and use the card for authentication. Administrators are encouraged to perform "best practices" in restricting end-user privileges and restrictive access to users. Managing ProtectTools Passwords Most of the ProtectTools Security Manager features are secured by passwords. The following table lists the commonly used passwords, the software module where the password is set, and the password function. The passwords that are set and used by IT administrators only are indicated in this table as well. All other passwords may be set by regular users or administrators. Table 1-1 Password Management ProtectTools Password Computer Setup administrator password Set in this ProtectTools Module Function BIOS Configuration, by IT administrator Protects access to the BIOS Computer Setup utility and security settings. NOTE Also known as BIOS administrator, F10 Setup, or Security Setup password Power-On password BIOS Configuration HP ProtectTools Power-On Authentication Support is a TPM-based security tool designed to prevent unauthorized access to the computer as it is powered on. Power-On Authentication Support uses the HP ProtectTools Embedded Security Basic User password. Once Power-On Authentication is enabled in Computer Setup, the password is set when the first/ 2 Chapter 1 Introduction ENWW

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
Understanding Security Roles
In managing computer security (particularly for large organizations), one important practice is to divide
responsibilities and rights among various types of administrators and users.
NOTE
In a small organization or for individual use, these roles may all be held by the same
person.
For ProtectTools, the security duties and privileges can be divided into the following roles:
Security officer—Defines the security level for the company or network and determines the security
features to deploy, such as Java Cards, biometric readers, or USB tokens.
NOTE
Many of the features in ProtectTools can be customized by the security officer in
cooperation with HP. For more information, visit
.
IT administrator—Applies and manages the security features defined by the security officer. Can
also enable and disable some features. For example, if the security officer has decided to deploy
Java Cards, the IT administrator can enable Java Card BIOS security mode.
User—Uses the security features. For example, if the security officer and IT administrator have
enabled Java Cards for the system, the user can set the Java Card PIN and use the card for
authentication.
Administrators are encouraged to perform “best practices” in restricting end-user privileges and
restrictive access to users.
Managing ProtectTools Passwords
Most of the ProtectTools Security Manager features are secured by passwords. The following table lists
the commonly used passwords, the software module where the password is set, and the password
function.
The passwords that are set and used by IT administrators only are indicated in this table as well. All
other passwords may be set by regular users or administrators.
Table 1-1
Password Management
ProtectTools Password
Set in this ProtectTools Module
Function
Computer Setup administrator
password
NOTE
Also known as BIOS
administrator, F10 Setup, or
Security Setup password
BIOS Configuration, by IT administrator
Protects access to the BIOS Computer
Setup utility and security settings.
Power-On password
BIOS Configuration
HP ProtectTools Power-On
Authentication Support is a TPM-based
security tool designed to prevent
unauthorized access to the computer as
it is powered on. Power-On
Authentication Support uses the HP
ProtectTools Embedded Security Basic
User password. Once Power-On
Authentication is enabled in Computer
Setup, the password is set when the first/
2
Chapter 1
Introduction
ENWW