Dell Latitude 5300 2-in-1 Setup and specifications guide - Page 32

Secure boot

Get Dell Latitude 5300 2-in-1 PDF manuals and user guides View all Dell Latitude 5300 2-in-1 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 32 highlights

Option TPM 2.0 Security Description Allows you to enable or disable the Trusted Platform Module (TPM) during POST. The options are: • TPM On-Default • Clear • PPI Bypass for Enable Command-Default • PPI Bypass for Disbale Command • PPI Bypass for Clear Command • Attestation Enable-Default • Key Storage Enable-Default • SHA-256-Default Absolute® OROM Keyboard Access This field lets you Enable, Disable, or Permanently Disable the BIOS module interface of the optional Absolute Persistence Module service from Absolute® Software. This option determines whether users are able to enter Option ROM Configuration screens via hotkey during boot. Specifically this settings is capable of preventing access to Intel® RAID(Ctrl+I) or Intel® Management Engine BIOS Extension (Ctrl+P/F12). Options are: • Enable • One Time Enable • Disable Admin Setup Lockout Allows you to prevent users from entering Setup when an administrator password is set. • Enable Admin Setup Lockout This option is not set by default. Master Password Lockout Allows you to disable master password support. • Enable Master Password Lockout This option is not set by default. NOTE: Hard Disk password should be cleared before the settings can be changed. SMM Security Mitigation Allows you to enable or disable additional UEFI SMM Security Mitigation protection. • SMM Security Mitigation This option is not set by default. Secure boot Table 36. Secure Boot Option Secure Boot Enable Secure Boot Mode Description Allows you to enable or disable the Secure Boot Feature. • Secure Boot Enable-Default Changes to the Secure Boot operation mode modifies the behaviour of Secure Boot to allow evaluation of UEFI driver signatures. Choose one of the option: • Deployed Mode-Default • Audit Mode 32 System setup

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
Option
Description
TPM 2.0 Security
Allows you to enable or disable the Trusted Platform Module (TPM) during POST.
The options are:
TPM On
—Default
Clear
PPI Bypass for Enable Command
—Default
PPI Bypass for Disbale Command
PPI Bypass for Clear Command
Attestation Enable
—Default
Key Storage Enable
—Default
SHA-256
—Default
Absolute®
This field lets you Enable, Disable, or Permanently Disable the BIOS module interface of the optional
Absolute Persistence Module service from Absolute® Software.
OROM Keyboard Access
This option determines whether users are able to enter Option ROM Configuration screens via hotkey
during boot. Specifically this settings is capable of preventing access to Intel® RAID(Ctrl+I) or Intel®
Management Engine BIOS Extension (Ctrl+P/F12).
Options are:
Enable
One Time Enable
Disable
Admin Setup Lockout
Allows you to prevent users from entering Setup when an administrator password is set.
Enable Admin Setup Lockout
This option is not set by default.
Master Password Lockout
Allows you to disable master password support.
Enable Master Password Lockout
This option is not set by default.
NOTE:
Hard Disk password should be cleared before the settings can be changed.
SMM Security Mitigation
Allows you to enable or disable additional UEFI SMM Security Mitigation protection.
SMM Security Mitigation
This option is not set by default.
Secure boot
Table 36. Secure Boot
Option
Description
Secure Boot Enable
Allows you to enable or disable the Secure Boot Feature.
Secure Boot Enable
—Default
Secure Boot Mode
Changes to the Secure Boot operation mode modifies the
behaviour of Secure Boot to allow evaluation of UEFI driver
signatures.
Choose one of the option:
Deployed Mode
—Default
Audit Mode
32
System setup