Home » Dell Manuals » Servers » Dell PowerEdge T430 » Manual Viewer

Dell PowerEdge T430 Dell PowerEdge T430 Owners Manual - Page 42

Secure Boot Custom Policy Settings screen

View all Dell PowerEdge T430 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 42 highlights

Menu Item Intel TXT Power Button NMI Button AC Power Recovery AC Power Recovery Delay User Defined Delay (60s to 240s) UEFI Variable Access Secure Boot Secure Boot Policy Secure Boot Policy Summary Description Enables or disables the Intel Trusted Execution Technology (TXT). To enable Intel TXT, Virtualization Technology must be enabled and TPM Security must be Enabled with Pre-boot measurements. By default, the Intel TXT option is set to Off Enables or disables the power button on the front of the system. By default, the Power Button option is set to Enabled. Enables or disables the NMI button on the front of the system. By default, the NMI Button option is set to Disabled. Sets how the system reacts after AC power is restored to the system. By default, the AC Power Recovery option is set to Last. Sets how the system supports staggering of power up after AC power is restored to the system. By default, the AC Power Recovery Delay option is set to Immediate. Sets the User Defined Delay when the User Defined option for AC Power Recovery Delay is selected. Provides varying degrees of securing UEFI variables. When set to Standard (the default) UEFI variables are accessible in the Operating System per the UEFI specification. When set to Controlled, selected UEFI variables are protected in the environment and new UEFI boot entries are forced to be at the end of the current boot order. Enables Secure Boot, where the BIOS authenticates each pre-boot image using the certificates in the Secure Boot Policy. Secure Boot is disabled by default. When Secure Boot policy is Standard, the BIOS uses the system manufacturer's key and certificates to authenticate pre-boot images. When Secure Boot policy is Custom, the BIOS uses the user-defined key and certificates. Secure Boot policy is Standard by default. Displays the list of certificates and hashes that secure boot uses to authenticate images. Secure Boot Custom Policy Settings screen Secure Boot Custom Policy Settings is displayed only when Secure Boot Policy is set to Custom. In the System Setup Main Menu, click System BIOS → System Security → Secure Boot Custom Policy Settings. Menu Item Description Platform Key Imports, exports, deletes, or restores the platform key (PK). Key Exchange Key Database Allows you to import, export, delete, or restore entries in the Key Exchange Key (KEK) Database. Authorized Signature Database Imports, exports, deletes, or restores entries in the Authorized Signature Database (db). Forbidden Signature Database Imports, exports, deletes, or restores entries in the Forbidden Signature Database (dbx). 42

Section	Page
Dell PowerEdge T430 Owner's Manual	3
About your system	9
Front-panel features and indicators	10
LCD panel features	16
Home screen	16
Setup menu	17
View menu	17
Diagnostic indicators	17
Hard-drive indicator codes	19
Back-panel features and indicators	20
NIC indicator codes	22
Indicator codes for redundant power supply	22
Indicator codes for non-redundant power supply	24
Documentation matrix	25
Quick Resource Locator	25
Performing initial system configuration	27
Setting up your system	27
Setting up and configuring the iDRAC IP address	27
Logging in to iDRAC	27
Installing the operating system	28
Managing your system remotely	28
Downloading and installing drivers and firmware	28
Pre-operating system management applications	30
Navigation keys	30
About System Setup	30
Entering System Setup	31
System Setup Main Menu	31
System BIOS screen	31
System Information screen	32
Memory Settings screen	32
Processor Settings screen	33
SATA Settings screen	34
Boot Settings screen	37
Network Settings screen	37
Integrated Devices screen details	38
Serial Communication screen	39
System Profile Settings screen	40
System Security Settings screen	41
Miscellaneous Settings screen	43
About Boot Manager	43
Entering Boot Manager	43
Boot Manager main menu	43
About Dell Lifecycle Controller	44
Changing the boot order	44
Choosing the system boot mode	44
Assigning a system and setup password	45
Using your system password to secure your system	46
Deleting or changing an existing system password and setup password	46
Operating with a setup password enabled	47
Embedded system management	47
iDRAC Settings utility	47
Entering the iDRAC Settings utility	47
Changing the Thermal Settings	48
Installing and removing system components	49
Safety instructions	49
Before working inside your system	49
After working inside your system	49
Recommended tools	50
Front bezel (optional)	50
Installing the front bezel	50
Removing the front bezel	51
System feet	51
Removing the system feet	51
Installing the system feet	52
Caster wheels (optional)—tower mode	53
Installing caster wheels	53
Removing caster wheels	54
Removing the system cover	55
Installing the system cover	56
Inside the system	56
Optical drives and tape drives (optional)	57
Removing the optical drive or tape drive	58
Installing the optical drive or tape drive	61
Cooling shroud	61
Removing the cooling shroud	61
Installing the cooling shroud	62
Hot-swappable hard drives	63
Removing a hot-swap hard drive	64
Installing a hot-swap hard drive	65
Removing a hard-drive blank	65
Installing a hard-drive blank	66
Installing a 2.5 inch hard drive into a 3.5 inch hard-drive adapter	67
Removing a 2.5 inch hard drive from a 3.5 inch hard-drive adapter	68
Installing a hard-drive adapter into a hard-drive carrier	68
Removing a hard-drive adapter from a hard-drive carrier	69
Removing a hard drive from a hard-drive carrier	69
Installing a hard drive into a hard-drive carrier	70
Cabled hard drives	70
Removing the internal hard-drive bay	71
Installing the internal hard-drive bay	72
Removing a cabled hard drive	72
Installing a cabled hard drive	76
Hard-drive backplane	76
Removing the hard-drive backplane	77
Installing the hard-drive backplane	82
Four-slot hard-drive blank	82
Removing a four-slot hard-drive blank	82
Installing a four-slot hard-drive blank	83
System memory	84
General memory module installation guidelines	86
Mode-specific guidelines	86
Sample memory configurations	87
Removing memory modules	89
Installing memory modules	90
Cooling fans	92
Removing the internal cooling fan	92
Installing the internal cooling fan	93
Removing the external cooling fan	94
Installing the external cooling fan	95
Internal USB memory key (optional)	96
Replacing the internal USB key	96
Expansion card holder	97
Removing the expansion card holder	97
Installing the expansion card holder	98
Expansion cards	98
Expansion card installation guidelines	99
GPU card installation guidelines	100
Removing an expansion card	100
Installing an expansion card	102
Removing a GPU card	103
Installing a GPU card	104
iDRAC ports card (optional)	105
Removing the iDRAC ports card	105
Installing the iDRAC ports card	106
Replacing an SD vFlash media card	107
Internal dual SD module	108
Removing the internal dual SD module	108
Installing the internal dual SD module	110
Internal SD card	110
Removing an internal SD card	110
Installing an internal SD card	111
Processors	111
Removing a processor	112
Installing a processor	116
Redundant AC power supply	118
Hot Spare feature	118
Removing a redundant AC power supply	119
Installing a redundant AC power supply	120
Removing the power supply unit blank	121
Installing the power supply unit blank	122
Replacing the power supply divider	122
Non-redundant AC power supply	123
Removing a non-redundant AC power supply	124
Installing a non-redundant AC power supply	125
Power interposer board	126
Removing the power interposer board	126
Installing the power interposer board	127
System battery	128
Replacing the system battery	128
Control panel assembly	129
Removing the control panel assembly	129
Installing the control panel assembly	131
Removing the control panel assembly cover	132
Installing the control panel assembly cover	133
Removing the control-panel board	134
Installing the control-panel board	135
Removing the LCD module	136
Installing the LCD module	137
Removing the VGA module	138
Installing the VGA module	139
System board	139
Removing the system board	139
Installing the system board	143
Restoring the Service Tag using Easy Restore	144
Entering the system Service Tag using System Setup	144
Trusted Platform Module	145
Installing the Trusted Platform Module	145
Re-enabling the TPM for BitLocker users	146
Re-enabling the TPM for TXT users	146
System top cover	147
Removing the system top cover	147
Installing the system top cover	148
Converting the system from tower mode to rack mode	149
Safety instructions	149
Preparing a system for conversion from tower mode to rack mode	149
Troubleshooting your system	152
Safety first—for you and your system	152
Troubleshooting system startup failure	152
Troubleshooting external connections	152
Troubleshooting the video subsystem	152
Troubleshooting a USB device	152
Troubleshooting iDRAC Direct (USB XML configuration)	153
Troubleshooting iDRAC Direct (laptop connection)	154
Troubleshooting a serial I/O device	154
Troubleshooting a NIC	154
Troubleshooting a wet system	155
Troubleshooting a damaged system	156
Troubleshooting the system battery	156
Troubleshooting power supply units	157
Power source problems	157
Power supply unit problems	157
Troubleshooting cooling problems	158
Troubleshooting cooling fans	158
Troubleshooting system memory	159
Troubleshooting an internal USB key	160
Troubleshooting an SD card	160
Troubleshooting an optical drive	161
Troubleshooting a tape backup unit	162
Troubleshooting a hard drive	162
Troubleshooting a storage controller	163
Troubleshooting expansion cards	164
Troubleshooting processors	164
System messages	165
Warning messages	165
Diagnostic messages	165
Alert messages	165
Using system diagnostics	166
Dell Embedded System Diagnostics	166
When to use the Embedded System Diagnostics	166
Running the Embedded System Diagnostics from Boot Manager	166
Running the Embedded System Diagnostics from the Dell Lifecycle Controller	166
System diagnostic controls	167
Jumpers and connectors	168
System board connectors	168
System board jumper settings	170
Disabling a forgotten password	170
Technical Specifications	172
Getting help	178
Contacting Dell	178
Locating your system Service Tag	178

Match case Limit results 1 per page

Menu Item

Description

Intel TXT

Enables or disables the Intel Trusted Execution Technology (TXT). To

enable

Intel TXT

, Virtualization Technology must be enabled and TPM

Security must be

Enabled

with Pre-boot measurements. By default, the

Intel TXT

option is set to

Off

Power Button

Enables or disables the power button on the front of the system. By

default, the

Power Button

option is set to

Enabled

NMI Button

Enables or disables the NMI button on the front of the system. By default,

the

NMI Button

option is set to

Disabled

AC Power Recovery

Sets how the system reacts after AC power is restored to the system. By

default, the

AC Power Recovery

option is set to

Last

AC Power Recovery Delay

Sets how the system supports staggering of power up after AC power is

restored to the system. By default, the

AC Power Recovery Delay

option

is set to

Immediate

User Defined Delay (60s to

240s)

Sets the

User Defined Delay

when the

User Defined

option for

AC Power

Recovery Delay

is selected.

UEFI Variable Access

Provides varying degrees of securing UEFI variables. When set to

Standard

(the default) UEFI variables are accessible in the Operating

System per the UEFI specification. When set to

Controlled

, selected UEFI

variables are protected in the environment and new UEFI boot entries are

forced to be at the end of the current boot order.

Secure Boot

Enables Secure Boot, where the BIOS authenticates each pre-boot image

using the certificates in the Secure Boot Policy. Secure Boot is disabled

by default.

Secure Boot Policy

When Secure Boot policy is

Standard

, the BIOS uses the system

manufacturer’s key and certificates to authenticate pre-boot images.

When Secure Boot policy is

Custom

, the BIOS uses the user-defined key

and certificates. Secure Boot policy is

Standard

by default.

Secure Boot Policy

Summary

Displays the list of certificates and hashes that secure boot uses to

authenticate images.

Secure Boot Custom Policy Settings screen

Secure Boot Custom Policy Settings is displayed only when

Secure Boot Policy

is set to

Custom

In the

System Setup Main Menu

, click

System BIOS

→

System Security

→

Secure Boot Custom Policy

Settings

Menu Item

Description

Platform Key

Imports, exports, deletes, or restores the platform

key (PK).

Key Exchange Key Database

Allows you to import, export, delete, or restore

entries in the Key Exchange Key (KEK) Database.

Authorized Signature Database

Imports, exports, deletes, or restores entries in the

Authorized Signature Database (db).

Forbidden Signature Database

Imports, exports, deletes, or restores entries in the

Forbidden Signature Database (dbx).