Dell Precision 5750 Setup and specifications guide - Page 30

Table 33. System setup options-Security menucontinued, Enable Non-Admin Password Changes

Get Dell Precision 5750 PDF manuals and user guides View all Dell Precision 5750 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 30 highlights

Table 33. System setup options-Security menu(continued) Security Enable Non-Admin Password Changes Enables or disables the user to change the system and hard drive password without the need for admin password. Default: ON Non-Admin Setup Changes Enable UEFI Capsule Firmware Updates Enables or disables BIOS updates through UEFI capsule update packages. Default: ON Absolute Enables, disables or permanently disable the BIOS module interface of the optional Absolute Persistence Module service from Absolute Software. Default: Enabled TPM 2.0 Security On Select whether or not the Trusted Platform Model (TPM) is visible to the OS. Default: ON PPI Bypass for Enable Commands Enables or disables the OS to skip BIOS Physical Presence Interface (PPI) user prompts when issuing TPM PPI enabled and activate commands. Default: OFF PPI Bypass for Disable Commands Enables or disables The OS to skip BIOS PPI user prompts when issuing TPM PPI Disable and Deactivate commands. Default: OFF PPI Bypass for Clear Commands Enables or disables the operating system to skip BIOS Physical Presence Interface (PPI) user prompts when issuing the Clear command. Default: OFF Attestation Enable Enables to control whether the TPM Endorsement Hierarchy is available to the OS. Disabling this setting restricts the ability to use the TPM for signature operations. Default: ON Key Storage Enable Enables to control whether the TPM Endorsement Hierarchy is available to the OS. Disabling this setting restricts the ability to use the TPM for storing owner data. Default: ON SHA-256 Enables or disables the BIOS and the TPM to use the SHA-256 hash algorithm to extend measurements into the TPM PCRs during BIOS boot. Default: ON Clear Enables or disables the computer to clear the PTT owner information, and returns the PTT to the default state. Default: OFF TPM State Enables or disables the TPM. This is the normal operating state for the TPM when you want to use its complete array of capabilities. Default: Enabled SMM Security Mitigation Enables or disables additional UEFI SMM Security Mitigation protections. Default: OFF NOTE: This feature may cause compatibility issues or loss of functionality with some legacy tools and applications. Intel SGX Enables or disables the Intel Software Guard Extensions (SGX) to provide a secured environment for running code/storing sensitive information. Default: Software Control 30 System setup

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
Table 33. System setup options—Security menu(continued)
Security
Enable Non-Admin Password Changes
Enables or disables the user to change the system and hard drive password without
the need for admin password.
Default: ON
Non-Admin Setup Changes
Enable UEFI Capsule Firmware Updates
Enables or disables BIOS updates through UEFI capsule update packages.
Default: ON
Absolute
Enables, disables or permanently disable the BIOS module interface of the optional
Absolute Persistence Module service from Absolute Software.
Default: Enabled
TPM 2.0 Security On
Select whether or not the Trusted Platform Model (TPM) is visible to the OS.
Default: ON
PPI Bypass for Enable Commands
Enables or disables the OS to skip BIOS Physical Presence Interface (PPI) user
prompts when issuing TPM PPI enabled and activate commands.
Default: OFF
PPI Bypass for Disable Commands
Enables or disables The OS to skip BIOS PPI user prompts when issuing TPM PPI
Disable and Deactivate commands.
Default: OFF
PPI Bypass for Clear Commands
Enables or disables the operating system to skip BIOS Physical Presence Interface
(PPI) user prompts when issuing the Clear command.
Default: OFF
Attestation Enable
Enables to control whether the TPM Endorsement Hierarchy is available to the OS.
Disabling this setting restricts the ability to use the TPM for signature operations.
Default: ON
Key Storage Enable
Enables to control whether the TPM Endorsement Hierarchy is available to the OS.
Disabling this setting restricts the ability to use the TPM for storing owner data.
Default: ON
SHA-256
Enables or disables the BIOS and the TPM to use the SHA-256 hash algorithm to
extend measurements into the TPM PCRs during BIOS boot.
Default: ON
Clear
Enables or disables the computer to clear the PTT owner information, and returns
the PTT to the default state.
Default: OFF
TPM State
Enables or disables the TPM. This is the normal operating state for the TPM when
you want to use its complete array of capabilities.
Default: Enabled
SMM Security Mitigation
Enables or disables additional UEFI SMM Security Mitigation protections.
Default: OFF
NOTE:
This feature may cause compatibility issues or loss of
functionality with some legacy tools and applications.
Intel SGX
Enables or disables the Intel Software Guard Extensions (SGX) to provide a secured
environment for running code/storing sensitive information.
Default: Software Control
30
System setup