Home » Dell Manuals » Desktops » Dell OptiPlex 7071 Tower » Manual Viewer

Dell OptiPlex 7071 Tower Tower Service Manual - Page 74

Secure boot options

View all Dell OptiPlex 7071 Tower manuals

Add to My Manuals
Save this manual to your list of manuals

Page 74 highlights

Option Chassis Intrusion OROM Keyboard Access Admin Setup Lockout Master Password Lockout SMM Security Mitigation Description • Permanently Disabled This field controls the chassis intrusion feature. The options are: • Disabled-enabled by default • Enabled • On-Silent This option determines whether users can enter Option ROM Configuration screens through hotkeys during the system boot. • Disabled • Enabled-enabled by default • One Time Enable Allows you to prevent users from entering the setup when Admin password is set. This option is disabled by default. When enabled, this option disables master password support. This option is disabled by default. Allows you to enable or disable another UEFI SMM Security Mitigation protections. This option is disabled by default. Secure boot options Table 7. Secure Boot Option Secure Boot Enable Secure Boot Mode Expert key Management Description Allows you to enable or disable Secure Boot feature • Secure Boot Enable This option is not selected by default. Allows you to modify the behavior of Secure Boot to allow evaluation or enforcement of UEFI driver signatures. • Deployed Mode (default) • Audit Mode Allows you to manipulate the security key databases only if the system is in Custom Mode. The Enable Custom Mode option is disabled by default. The options are: • PK (default) • KEK • db • dbx If you enable the Custom Mode, the relevant options for PK, KEK, db, and dbx appear. The options are: • Save to File- Saves the key to a user-selected file • Replace from File- Replaces the current key with a key from a user-selected file • Append from File- Adds a key to the current database from a user-selected file • Delete- Deletes the selected key • Reset All Keys- Resets to default setting • Delete All Keys- Deletes all the keys NOTE: If you disable the Custom Mode, all the changes made will be erased and the keys will restore to default settings. 74 System setup

Section	Page
OptiPlex 7071 Tower Service Manual	3
Working on your computer	6
Safety instructions	6
Before working inside your computer	6
Safety precautions	7
Electrostatic discharge—ESD protection	7
ESD field service kit	8
Transporting sensitive components	9
After working inside your computer	9
Major components of your system	10
Disassembly and reassembly	12
Recommended tools	12
Screw list	12
Left-side cover	13
Removing the left-side cover	13
Installing the left-side cover	14
Front cover	16
Removing the front cover	16
Installing the front cover	16
2.5-inch hard drive	17
Removing the 2.5-inch hard drive	17
Installing the 2.5-inch hard drive	18
2.5-inch hard drive bracket	19
Removing the 2.5-inch hard drive bracket	19
Installing the 2.5-inch hard drive bracket	20
3.5-inch hard drive	21
Removing the 3.5-inch hard drive	21
Installing the 3.5-inch hard drive	22
3.5-inch hard drive bracket	24
Removing the 3.5-inch hard drive bracket	24
Installing the 3.5-inch hard drive bracket	24
Slim optical-drive	25
Removing the Optical Disk Drive	25
Installing the Optical Disk Drive	26
Slim optical-drive bracket	27
Removing the slim ODD bracket	27
Installing the slim ODD bracket	28
Chassis fan	29
Removing the chassis fan	29
Installing the chassis fan	30
Memory modules	31
Removing the memory modules	31
Installing the memory modules	32
Wireless card	33
Removing the wireless card	33
Installing the wireless card	34
Solid-state drive/Intel Optane	35
Removing the 2230 solid-state drive/Intel Optane memory module	35
Installing the 2230 solid-state drive/Intel Optane memory module	36
Removing the 2280 solid-state drive/Intel Optane memory module	37
Installing the 2280 solid-state drive/Intel Optane memory module	37
Graphics card	38
Removing the graphics card	38
Installing the graphics card	39
Coin-cell battery	40
Removing the coin-cell battery	40
Installing the coin-cell battery	41
Power-supply unit	42
Removing the power-supply unit	42
Installing the power-supply unit	44
Processor fan and heat-sink assembly	47
Removing the processor fan and 95 W heat-sink assembly	47
Installing the processor fan and 95 W heat-sink assembly	48
Removing the processor fan and 65 W heat-sink assembly	49
Installing the processor fan and 65 W heat-sink assembly	49
Processor	50
Removing the processor	50
Installing the processor	51
VR heat sink	53
Removing the VR heat sink	53
Installing the VR heat sink	53
Speaker	54
Removing the speaker	54
Installing the speaker	55
Power button	56
Removing the power button	56
Installing the power button	57
Intrusion switch	58
Removing the intrusion switch	58
Installing the intrusion switch	59
System board	60
Removing the system board	60
Installing the system board	64
System setup	69
Entering BIOS setup program	69
Boot menu	69
Navigation keys	69
Boot Sequence	70
System setup options	70
General options	70
System information	71
Video screen options	72
Security	73
Secure boot options	74
Intel Software Guard Extensions options	75
Performance	75
Power management	76
Post behavior	76
Manageability	77
Virtualization support	77
Wireless options	78
Maintenance	78
System logs	78
Advanced configuration	78
System and setup password	79
Assigning a system setup password	79
Deleting or changing an existing system setup password	79
Clearing CMOS settings	80
Clearing BIOS (System Setup) and System passwords	80
Updating the BIOS in Windows	80
Updating BIOS on systems with BitLocker enabled	81
Updating your system BIOS using a USB flash drive	81
Updating the Dell BIOS in Linux and Ubuntu environments	82
Flashing the BIOS from the F12 One-Time boot menu	82
Troubleshooting	88
Enhanced Pre-Boot System Assessment (ePSA) diagnostics	88
Running the ePSA diagnostics	88
Diagnostics	88
Diagnostic error messages	90
System error messages	93
Recovering the operating system	93
Enabling Intel Optane memory	94
Disabling Intel Optane memory	94
Flea power release	94
WiFi power cycle	95
Getting help	96

Match case Limit results 1 per page

Option

Description

•

Permanently Disabled

Chassis Intrusion

This field controls the chassis intrusion feature.

The options are:

•

Disabled—enabled by default

•

Enabled

•

On-Silent

OROM Keyboard Access

This option determines whether users can enter Option ROM Configuration screens through

hotkeys during the system boot.

•

Disabled

•

Enabled—enabled by default

•

One Time Enable

Admin Setup Lockout

Allows you to prevent users from entering the setup when Admin password is set. This option is

disabled by default.

Master Password Lockout

When enabled, this option disables master password support. This option is disabled by default.

SMM Security Mitigation

Allows you to enable or disable another UEFI SMM Security Mitigation protections. This option is

disabled by default.

Secure boot options

Table 7. Secure Boot

Option

Description

Secure Boot Enable

Allows you to enable or disable Secure Boot feature

•

Secure Boot Enable

This option is not selected by default.

Secure Boot Mode

Allows you to modify the behavior of Secure Boot to allow evaluation or enforcement of UEFI

driver signatures.

•

Deployed Mode

(default)

•

Audit Mode

Expert key Management

Allows you to manipulate the security key databases only if the system is in Custom Mode. The

Enable Custom Mode

option is disabled by default. The options are:

•

(default)

•

KEK

•

dbx

If you enable the

Custom Mode

, the relevant options for

PK, KEK, db, and dbx

appear. The

options are:

•

Save to File

- Saves the key to a user-selected file

•

Replace from File

- Replaces the current key with a key from a user-selected file

•

Append from File

- Adds a key to the current database from a user-selected file

•

Delete

- Deletes the selected key

•

Reset All Keys

- Resets to default setting

•

Delete All Key

s- Deletes all the keys

NOTE:

If you disable the Custom Mode, all the changes made will be erased and the

keys will restore to default settings.

System setup