Asus H87I-PLUS H87I-PLUS User's Manual - Page 66

Secure Boot, Install Default Secure Boot keys, Save Secure Boot Keys, Delete PK

Get Asus H87I-PLUS PDF manuals and user guides View all Asus H87I-PLUS manuals
Add to My Manuals
Save this manual to your list of manuals

Page 66 highlights

The following four items appear when you set Launch CSM to [Enabled]. Boot Devices Control [UEFI and L...] Allows you to select the type of devices that you want to boot. Configuration options: [UEFI and Legacy OpROM] [Legacy OpROM only] [UEFI only] Boot from Network Devices [Legacy OpR...] Allows you to select the type of network devices that you want to launch. Configuration options: [Legacy OpROM first] [UEFI driver first] [Ignore] Boot from Storage Devices [Legacy OpR...] Allows you to select the type of storage devices that you want to launch. Configuration options: [Both, Legacy OpROM first] [Both, UEFI first] [Legacy OpROM first] [UEFI driver first] [Ignore] Boot from PCIe/PCI Expansion Devices [Legacy OpR...] Allows you to select the type of PCIe/PCI expansion devices that you want to launch. Configuration options: [Legacy OpROM first] [UEFI driver first] 2.8.9 Secure Boot Allows you to configure the Windows Secure Boot settings and manage its keys to protect the system from unauthorized access and malwares during POST. OS Type [Windows UEFI mode] [Windows UEFI Mode] Allows you to select your installed operating system. Execute the Microsoft® Secure Boot check. Only select this option when booting on Windows® UEFI mode or other Microsoft® Secure Boot compliant OS. [Other OS] Get the optimized function when booting on Windows® non-UEFI mode, Windows® Vista/ Windows® XP, or other Microsoft® Secure Boot non-compliant OS. Microsoft® Secure Boot only supports Windows® UEFI mode. Key Management This item appears only when you set OS Type to [Windows UEFI Mode]. It allows you to manage the Secure Boot keys. Install Default Secure Boot keys Allows you to immediately load the default Security Boot keys, Platform key (PK), Key-exchange Key (KEK), Signature database (db), and Revoked Signatures (dbx). When the default Secure boot keys are loaded, all the Secure boot keys' state will change from Unloaded mode to loaded mode. The settings are applied after reboot. Save Secure Boot Keys Allows you to save all the Security Boot keys to a USB storage device. PK Management The Platform Key (PK) locks and secures the firmware from any permissible changes. The system verifies the PK before your system enters the OS. Delete PK Allows you to delete the PK from your system. Once the PK is deleted, all the system's Secure Boot keys will not be active. Configuration options: [Yes] [No] ASUS H87I-PLUS 2-39

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
ASUS H87I-PLUS
2-39
The following four items appear when you set
Launch CSM
to
[Enabled]
.
Boot Devices Control [UEFI and L...]
Allows you to select the type of devices that you want to boot. Configuration
options: [UEFI and Legacy OpROM] [Legacy OpROM only] [UEFI only]
Boot from Network Devices [Legacy OpR...]
Allows you to select the type of network devices that you want to launch.
Configuration options: [Legacy OpROM first] [UEFI driver first] [Ignore]
Boot from Storage Devices [Legacy OpR...]
Allows you to select the type of storage devices that you want to launch.
Configuration options: [Both, Legacy OpROM first] [Both, UEFI first]
[Legacy OpROM first] [UEFI driver first] [Ignore]
Boot from PCIe/PCI Expansion Devices [Legacy OpR...]
Allows you to select the type of PCIe/PCI expansion devices that you want
to launch. Configuration options: [Legacy OpROM first] [UEFI driver first]
2.8.9
Secure Boot
Allows you to configure the Windows Secure Boot settings and manage its keys to protect the
system from unauthorized access and malwares during POST.
OS Type [Windows UEFI mode]
[Windows UEFI Mode]
Allows you to select your installed operating system. Execute
the Microsoft
®
Secure Boot check. Only select this option
when booting on Windows
®
UEFI mode or other Microsoft
®
Secure Boot compliant OS.
[Other OS]
Get the optimized function when booting on Windows
®
non-UEFI mode, Windows
®
Vista/ Windows
®
XP, or other
Microsoft
®
Secure Boot non-compliant OS. Microsoft
®
Secure
Boot only supports Windows
®
UEFI mode.
Key Management
This item appears only when you set OS Type to [Windows UEFI Mode]. It allows you
to manage the Secure Boot keys.
Install Default Secure Boot keys
Allows you to immediately load the default Security Boot keys, Platform key
(PK), Key-exchange Key (KEK), Signature database (db), and Revoked
Signatures (dbx). When the default Secure boot keys are loaded, all the
Secure boot keys’ state will change from Unloaded mode to loaded mode.
The settings are applied after reboot.
Save Secure Boot Keys
Allows you to save all the Security Boot keys to a USB storage device.
PK Management
The Platform Key (PK) locks and secures the firmware from any permissible changes.
The system verifies the PK before your system enters the OS.
Delete PK
Allows you to delete the PK from your system. Once the PK is deleted, all
the system’s Secure Boot keys will not be active. Configuration options:
[Yes] [No]