HP Nc6400 ProtectTools

HP Nc6400 - Compaq Business Notebook Manual

Get HP Nc6400 - Compaq Business Notebook PDF manuals and user guides View all HP Nc6400 manuals
Add to My Manuals
Save this manual to your list of manuals

HP Nc6400 manual content summary:

  • HP Nc6400 | ProtectTools - Page 1
    ProtectTools Getting Started
  • HP Nc6400 | ProtectTools - Page 2
    in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. First Edition: March 2006 Document Part Number: 406816-001
  • HP Nc6400 | ProtectTools - Page 3
    11 Setting and changing the smart card user password 12 Storing the administrator or user card password 13 General tasks ...14 Updating BIOS smart card settings 14 Selecting the smart card reader 14 Changing the smart card PIN 14 Backing up and restoring smart cards 15 Creating a recovery
  • HP Nc6400 | ProtectTools - Page 4
    Setup passwords 43 Setting the power-on password 44 Changing the power-on password 44 Setting the setup password 44 Changing the setup password 45 Setting password options 45 Enabling and disabling stringent security 45 Enabling and disabling power-on authentication on Windows restart
  • HP Nc6400 | ProtectTools - Page 5
    ...49 Registering fingerprints 49 Set up the fingerprint reader 50 Use your registered fingerprint to log on to windows 51 Registering a smart card or token 51 Registering other credentials 51 General tasks ...52 Creating a virtual token ...52 Changing the Windows logon password 52 Changing
  • HP Nc6400 | ProtectTools - Page 6
    vi ENWW
  • HP Nc6400 | ProtectTools - Page 7
    ● Embedded Security for ProtectTools ● BIOS Configuration for ProtectTools ● Credential Manager reader. ProtectTools software modules may be preinstalled, preloaded, or available for download from the HP Web site. Visit http://www.hp.com for more information. NOTE The instructions in this guide
  • HP Nc6400 | ProtectTools - Page 8
    Security Manager from the Microsoft® Windows® Control Panel: ▲ Select Start > All Programs > HP ProtectTools Security Manager. NOTE After you and determines the security features to deploy, such as smart cards, biometric readers, or USB tokens. NOTE Many of the features in ProtectTools can be customized
  • HP Nc6400 | ProtectTools - Page 9
    Configuration, by IT administrator Function Protects access to the Computer Setup utility. NOTE Also known as BIOS administrator, f10 Setup, or Security Setup password Power-on password BIOS Configuration Protects access to the computer contents when the computer is turned on, restarted, or
  • HP Nc6400 | ProtectTools - Page 10
    , by IT password administrator Windows logon password Windows Control Panel Protects Windows. ● It can be used in place of the Windows logon process, allowing access to Windows and Credential Manager simultaneously. Protects access to the Credential Manager recovery file. Can be used in manual
  • HP Nc6400 | ProtectTools - Page 11
    Creating a secure password When creating passwords, you must first follow any specifications that are set by the program. In general, however, consider the following guidelines to help you create strong passwords and reduce the chances of your password being compromised: ● Use passwords with more
  • HP Nc6400 | ProtectTools - Page 12
    6 Chapter 1 Introduction ENWW
  • HP Nc6400 | ProtectTools - Page 13
    for computers equipped with an optional smart card reader. With Smart Card Security, you can ● Access Setup utility to enable smart card authentication in a power-on environment, and to configure separate smart cards for change the password used to authenticate users of the smart card. ● Back up
  • HP Nc6400 | ProtectTools - Page 14
    the smart card: 1. Insert the smart card into the reader. 2. Select Start > All Programs > HP ProtectTools Security Manager. 3. In the left pane, select Smart is entered correctly within 5 attempts. The count for these attempts resets after the correct PIN is entered. 7. Click OK to complete the
  • HP Nc6400 | ProtectTools - Page 15
    mode features are unavailable until you enable smart card power-on authentication support. 2. Enable smart card BIOS security mode in Smart Card Security. Refer to "Enabling smart card BIOS security mode and setting the smart card administrator password," later in this chapter. 3. Set the smart card
  • HP Nc6400 | ProtectTools - Page 16
    Refer to "Storing the administrator or user card password" for detailed instructions. ● Creating a recovery file. Refer to "Creating a recovery file" for detailed instructions. Disabling smart card BIOS security mode When disabling smart card BIOS security mode, the smart card administrator and user
  • HP Nc6400 | ProtectTools - Page 17
    Changing the smart card administrator password The smart card administrator password is set as part of the process for enabling smart card BIOS security mode. You can change the smart card administrator password after it has been set. Refer to "Smart card BIOS security mode," earlier in this chapter
  • HP Nc6400 | ProtectTools - Page 18
    dialog box is displayed. Omit steps 6 through 8 and go to step 9. ● If there is no user password on the card, the BIOS Password Wizard opens. 6. In the BIOS Password Wizard, you can either ● Enter a password manually. ● Generate a random 32-byte password. NOTE Using a known password enables you to
  • HP Nc6400 | ProtectTools - Page 19
    into the reader. 2. Select Start > All Programs > HP ProtectTools Security Manager. 3. In the left pane, select Smart Card Security, and then select BIOS. 4. In the right pane, under BIOS Password on Smart Card, click Store. 5. In the BIOS Password Wizard, you can either ● Enter a password manually
  • HP Nc6400 | ProtectTools - Page 20
    HP ProtectTools Security Manager. 2. In the left pane, select Smart Card Security, and then select BIOS. 3. In the right pane, under Smart Card BIOS Password be unavailable or incorrectly displayed. To select the smart card reader: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2.
  • HP Nc6400 | ProtectTools - Page 21
    does not match a smart card with updated information, immediately create a new recovery file and store it file: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, 6. Set and confirm a recovery file password, and then click OK. CAUTION To prevent the loss
  • HP Nc6400 | ProtectTools - Page 22
    ● Smart card recovery file password ● Smart card To restore a smart card: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In smart card into the reader. If the card is not initialized, you will be prompted to initialize it. For detailed instructions on initializing the smart
  • HP Nc6400 | ProtectTools - Page 23
    card into the reader, and then load the appropriate recovery file onto it. For more information, refer to "Restoring smart card data," earlier in this chapter. To create a replacement smart card with a manually generated smart card password: 1. Initialize a new smart card. For instructions, refer to
  • HP Nc6400 | ProtectTools - Page 24
    18 Chapter 2 Smart Card Security for ProtectTools ENWW
  • HP Nc6400 | ProtectTools - Page 25
    setup and configuration for computers equipped with an optional smart card reader. With Java Card Security, you can ● Access Java Card ● Work with the Computer Setup utility to enable Java Card authentication in a power-on environment, and to configure separate Java Cards for an administrator and a
  • HP Nc6400 | ProtectTools - Page 26
    is not selected in Java Card Security, some of the features may be unavailable or incorrectly displayed. To select the smart card reader: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Java Card Security, and then select General. 3. Insert the Java
  • HP Nc6400 | ProtectTools - Page 27
    Java Card ● Set power-on authentication ● Back up and restore Java Cards NOTE You must have a Computer Setup setup password in order to get HP ProtectTools Security Manager. 2. In the left pane, select Java Card Security, and then select General. 3. Insert a new Java Card into the smart card reader
  • HP Nc6400 | ProtectTools - Page 28
    it can be used for power-on authentication. To assign a name to a Java Card: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Java Card Security, and then select Advanced. 3. When the Setup Password dialog box displays, enter your Computer Setup setup
  • HP Nc6400 | ProtectTools - Page 29
    Setup Password dialog box displays, enter your Computer Setup setup password, and then click OK. 4. Insert the Java Card into the smart card reader. NOTE If you have not assigned a PIN to this card, the Change PIN dialog box opens, allowing you to enter a new PIN. 5. In the right pane, under Power
  • HP Nc6400 | ProtectTools - Page 30
    Java Card power-on authentication, the use of the Java Card is no longer needed to access the computer. 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Java Card Security, and then select Advanced. 3. When the Setup Password dialog box displays, enter
  • HP Nc6400 | ProtectTools - Page 31
    the Java Card power-on authentication identity data Card, you must also update the information on the HP ProtectTools Security Manager. 2. In the left pane, select Java Card Security, and then select Advanced. 3. When the Setup Password dialog box displays, enter your Computer Setup setup password
  • HP Nc6400 | ProtectTools - Page 32
    box displays, enter your Computer Setup setup password, and then click OK. 4. Insert the diskette or other media containing the Java Card recovery file. 5. Insert a Java Card into the reader. If the card has not been assigned a PIN, you will be prompted to create a PIN. For detailed instructions on
  • HP Nc6400 | ProtectTools - Page 33
    functions, such as backing up and restoring the key hierarchy ● Support for third-party applications (such as Microsoft Outlook and Internet Explorer on to Windows. On select models, the TPM embedded security chip also enables enhanced BIOS security features accessed through BIOS Configuration for
  • HP Nc6400 | ProtectTools - Page 34
    = ROM Based Setup" message is displayed in the lower-left corner of the screen. 2. If you have not set an administrator password, use the arrow keys to select Security > Setup password, and then press enter. 3. Type your password in the New password and Verify new password boxes, and then press f10
  • HP Nc6400 | ProtectTools - Page 35
    , and then click Next. 5. Set and confirm the emergency recovery token password, and then click Next. 6. Click Browse and choose the location for click Finish. You can start the wizard manually to set up a basic user account at any time by following the instructions in the next section. ● If you
  • HP Nc6400 | ProtectTools - Page 36
    password. To set up a basic user account and enable the user security features: 1. If the Embedded Security User Initialization Wizard is not open, select Start > All Programs > HP must obtain one from a certification authority. For instructions on configuring your e-mail and obtaining a digital
  • HP Nc6400 | ProtectTools - Page 37
    at the next logon. If the Basic User Key password is entered correctly, you can access the PSD directly from Windows Explorer. Encrypting files and folders When working with encrypted files in Windows XP Professional, consider the following rules: ● Only files and folders on NTFS partitions can
  • HP Nc6400 | ProtectTools - Page 38
    change the Basic User Key password: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Embedded Security, and then select User Settings. 3. In the right pane, under Basic User Key password, click Change. 4. Type the old password, and then set and confirm
  • HP Nc6400 | ProtectTools - Page 39
    restore data from the backup file: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Embedded Security, initialization wizard, click Finish, and then follow the on-screen instructions to complete the initialization. For more information, refer to "Setting
  • HP Nc6400 | ProtectTools - Page 40
    Programs > HP ProtectTools Security Manager. 2. In the left pane, select Embedded Security, and then select Advanced. 3. In the right pane, under Owner Password, click Change. 4. Type the old owner password, and then set and confirm the new owner password. 5. Click OK. Resetting a user password An
  • HP Nc6400 | ProtectTools - Page 41
    Migrating keys with the Migration Wizard Migration is an advanced administrator task that allows the management, restoration, and transfer of keys and certificates. For details on migration, refer to the Embedded Security online Help. ENWW Advanced tasks 35
  • HP Nc6400 | ProtectTools - Page 42
    36 Chapter 4 Embedded Security for ProtectTools ENWW
  • HP Nc6400 | ProtectTools - Page 43
    that are managed by Computer Setup. With BIOS Configuration, you can ● Manage power-on passwords and administrator passwords. ● Configure other power-on authentication features, such as enabling smart card passwords and embedded security authentication support. ● Enable and disable hardware features
  • HP Nc6400 | ProtectTools - Page 44
    BIOS HP ProtectTools Security Manager. 2. In the left pane, select BIOS Configuration. 3. Enter your Computer Setup administrator password at the BIOS administrator password prompt, and then click OK. NOTE The BIOS administrator password prompt is displayed selecting a boot device, and then clicking
  • HP Nc6400 | ProtectTools - Page 45
    not be supported by your computer. To enable or disable devices or security options: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select BIOS Configuration. 3. Enter your Computer Setup administrator password at the BIOS administrator password prompt, and
  • HP Nc6400 | ProtectTools - Page 46
    Mode ● Dual Core CPU ● Automatic Intel® SpeedStep Functionality Support ● Fan Always on While on AC Power ● BIOS DMA Data Transfers ● Intel or AMD PSAE Execution Disable ● Built-In Device Options ● Embedded WLAN Device Radio ● Embedded WWAN Device Radio ● Embedded Bluetooth® Device Radio ● LAN
  • HP Nc6400 | ProtectTools - Page 47
    module. To enable smart card power-on authentication support: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select BIOS Configuration. 3. Enter your Computer Setup administrator password at the BIOS administrator password prompt, and then click OK
  • HP Nc6400 | ProtectTools - Page 48
    module. To enable power-on authentication support for embedded security: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select BIOS Configuration. 3. Enter your Computer Setup administrator password at the BIOS administrator password prompt, and then
  • HP Nc6400 | ProtectTools - Page 49
    Support. NOTE To disable automatic DriveLock protection for Embedded Security, select Disable. 6. Click Apply, and then click OK in the ProtectTools window to save your changes. Managing Computer Setup passwords You can use BIOS Configuration to set and change the power-on and setup passwords
  • HP Nc6400 | ProtectTools - Page 50
    Click Apply, and then click OK in the ProtectTools window to save your changes. Changing the power-on password To change the power-on password: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select BIOS Configuration, and then select Security. 3. In the right
  • HP Nc6400 | ProtectTools - Page 51
    by requiring users to enter a power-on, TPM, or smart card password when Windows restarts. To enable or disable power-on authentication on Windows restart: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select BIOS Configuration, and then select Security
  • HP Nc6400 | ProtectTools - Page 52
    3. In the right pane, under Password Options, enable or disable Require password on restart. 4. Click Apply, and then click OK in the ProtectTools window to save your changes. 46 Chapter 5 BIOS Configuration for ProtectTools ENWW
  • HP Nc6400 | ProtectTools - Page 53
    ● Alternatives to passwords when logging on to Microsoft Windows, such as using a smart card or biometric reader to log on to Windows. For additional network resources. ● Support for optional security devices, such as smart cards and biometric readers. ● Support for additional security settings
  • HP Nc6400 | ProtectTools - Page 54
    the Log On link on the upper right side of the window. 2. Click Next. 3. Type your user name in the User name box, and then click Next. 4. Enter a password in the Password box, and then click Next. 5. Follow the on-screen instructions for logging on with your selected authentication method. 6. Click
  • HP Nc6400 | ProtectTools - Page 55
    -screen instructions to Windows password. If you are using an HP computer with an integrated fingerprint reader or if you are using an optional fingerprint reader, 2 steps are required for logon to Windows using a fingerprint reader. ● Set up the fingerprint reader. ● Use your registered fingerprint
  • HP Nc6400 | ProtectTools - Page 56
    registering at least 2 fingers, an error message is displayed. Click OK to continue. 9. After you have registered at least 2 fingers, click Finish, and then click OK. 10. To set up the fingerprint reader for a different Windows user, log on to Windows as that user and then repeat steps 1 through
  • HP Nc6400 | ProtectTools - Page 57
    , and you have a Windows password, you must enter the password in order to associate the password with the fingerprint. After the password has been associated with the fingerprint, you will not need to enter the password again when using the fingerprint reader. Registering a smart card or token
  • HP Nc6400 | ProtectTools - Page 58
    confirm a master PIN and a user PIN. 9. Click Finish. Changing the Windows logon password You can change your Windows logon password from the "My Identity" page in Credential Manager. 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Credential Manager
  • HP Nc6400 | ProtectTools - Page 59
    > All Programs > HP ProtectTools Security Manager. Device Type" page, select the device type you want to use to store the backup, and then click Next. NOTE You will need to know the password or PIN code for the device you select for the backup file. 7. Follow the on-screen instructions for the device
  • HP Nc6400 | ProtectTools - Page 60
    . 6. Follow the on-screen instructions for the device you selected, and then click Finish. 7. Click Yes at the confirmation dialog box. Removing an identity from the system You can delete your identity entirely from Credential Manager. NOTE This does not affect the Windows user account. To remove
  • HP Nc6400 | ProtectTools - Page 61
    > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Credential Manager, and then select My Identity. 3. In the right pane, under I Want To, click More, and then click Lock Workstation. The Windows logon screen is displayed. You must use a Windows password or the Credential
  • HP Nc6400 | ProtectTools - Page 62
    Click the domain from the list of available domains. 6. Type and confirm the password. NOTE If you want this to be your default user account, select the Use . To remove an account: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Credential Manager,
  • HP Nc6400 | ProtectTools - Page 63
    user names and passwords for multiple Internet and Windows applications, and authentication credentials with a smart card, biometric reader, or token, before logging on to a registration. Using manual (drag and drop) registration 1. Select Start > All Programs > HP ProtectTools Security Manager
  • HP Nc6400 | ProtectTools - Page 64
    logon box in the application, a rectangular icon is displayed. 7. On the "Application Information" page of the credential-for example, the user name and password-into the application box. 10. In the Sign On: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane,
  • HP Nc6400 | ProtectTools - Page 65
    . Then click More, and then click Export Application. 5. Follow the on-screen instructions to complete the export. 6. Click OK. Importing applications To import an application: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Credential Manager, and then
  • HP Nc6400 | ProtectTools - Page 66
    of credentials are required of either users or administrators. To specify how users or administrators log on: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Credential Manager, and then select Authentication and Credentials. 3. In the right pane, click
  • HP Nc6400 | ProtectTools - Page 67
    . To configure the credentials: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Credential Manager, ● To register the credential, click Register, and then follow the on-screen instructions. ● To delete the credential, click Clear, and then click Yes in
  • HP Nc6400 | ProtectTools - Page 68
    it handles detection of logon screens, automatic logon to registered dialogs, and password display. ● Services and Applications-Allows you to view the available services and modify the settings for those services. ● Biometric Settings-Allows you to select the fingerprint reader software and adjust
  • HP Nc6400 | ProtectTools - Page 69
    To require Single Sign On to verify your credentials before logging on to a registered dialog box or Web page: 1. Select Start > All Programs > HP ProtectTools Security Manager. 2. In the left pane, select Credential Manager, and then select Advanced Settings. 3. In the right pane, click the Single
  • HP Nc6400 | ProtectTools - Page 70
    64 Chapter 6 Credential Manager for ProtectTools ENWW
  • HP Nc6400 | ProtectTools - Page 71
    password, the BIOS unlocks the hard drive for the user. Biometric Category of authentication credentials that use a physical feature, such as a fingerprint, to identify a user. BIOS profile Group of BIOS Cryptographic service provider specific Group of computers that are part of a network and share
  • HP Nc6400 | ProtectTools - Page 72
    at startup or restart. This password can be set manually by the administrator or randomly generated. Stringent security Security feature in BIOS Configuration that provides enhanced protection for the power-on and administrator passwords and other forms of power-on authentication. Trusted Platform
  • HP Nc6400 | ProtectTools - Page 73
    4 setting 29 enabling Automatic DriveLock 43 device options 39 power-on authentication 41 smart card authentication 41 smart card BIOS security 9 stringent security 45 TPM chip 28 encrypting files and folders 31 F F10 Setup password 3 fingerprints 49 I identity 53 initializing embedded security
  • HP Nc6400 | ProtectTools - Page 74
    On automatic registration 57 exporting applications 58 manual registration 57 modifying application properties 58 removing applications 58 smart card administrator password changing 11 definition 3 setting 9 smart card BIOS security 9 smart card PIN changing 14 definition 3 smart card recovery file
  • HP Nc6400 | ProtectTools - Page 75
  • HP Nc6400 | ProtectTools - Page 76
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
ProtectTools
Getting Started