Dell Vostro 5391 Service Manual - Page 66

Secure boot

Get Dell Vostro 5391 PDF manuals and user guides View all Dell Vostro 5391 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 66 highlights

Option Password Change Description This option lets you determine whether changes to the System and Hard Disk passwords are permitted when an administrator password is set. Allow Non-Admin Password Changes - This option is enabled by default. Non-Admin Setup Changes UEFI Capsule Firmware Updates TPM 2.0 Security Determines whether changes to the setup option are permitted when an administrator password is set. This option controls whether this system allows BIOS updates via UEFI capsule update packages. This option is selected by default. Disabling this option will block BIOS updates from services such as Microsoft Windows Update and Linux Vendor Firmware Service (LVFS) Allows you to control whether the Trusted Platform Module (TPM) is visible to the operating system. • TPM On (default) • Clear • PPI Bypass for Enable Commands • PPI Bypass for Disable Commands • PPI Bypass for Clear Commands • Attestation Enable (default) • Key Storage Enable (default) • SHA-256 (default) Choose any one option: • Disabled • Enabled (default) Computrace(R) This field lets you Activate or Disable the BIOS module interface of the optional Computrace Service from Absolute Software. Enables or disables the optional Computrace service designed for asset management. • Deactivate • Disable • Activate - This option is selected by default. OROM Keyboard Access This option determines whether users are able to enter Option ROM configuration screen via hotkeys during boot. • Enabled (default) • Disabled • One Time Enable Admin Setup Lockout Master Password Lockout SMM Security Mitigation Allows you to prevent users from entering Setup when Admin password is set. This option is not set by default. Allows you to disable master password support Hard Disk passwords need to be cleared before the settings can be changed. This option is not set by default. Allows you to enable or disable additional UEFI SMM Security Mitigation protections. This option is not set by default. Secure boot Table 5. Secure Boot Option Secure Boot Enable Description Allows you to enable or disable Secure Boot feature • Secure Boot Enable This option is selected by default. 66 System setup

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
Option
Description
Password Change
This option lets you determine whether changes to the System and Hard Disk passwords are
permitted when an administrator password is set.
Allow Non-Admin Password Changes
- This option is enabled by default.
Non-Admin Setup Changes
Determines whether changes to the setup option are permitted when an administrator password is
set.
UEFI Capsule Firmware Updates
This option controls whether this system allows BIOS updates via UEFI capsule update packages.
This option is selected by default. Disabling this option will block BIOS updates from services such as
Microsoft Windows Update and Linux Vendor Firmware Service (LVFS)
TPM 2.0 Security
Allows you to control whether the Trusted Platform Module (TPM) is visible to the operating
system.
TPM On (default)
Clear
PPI Bypass for Enable Commands
PPI Bypass for Disable Commands
PPI Bypass for Clear Commands
Attestation Enable (default)
Key Storage Enable (default)
SHA-256 (default)
Choose any one option:
Disabled
Enabled (default)
Computrace(R)
This field lets you Activate or Disable the BIOS module interface of the optional Computrace Service
from Absolute Software. Enables or disables the optional Computrace service designed for asset
management.
Deactivate
Disable
Activate - This option is selected by default.
OROM Keyboard Access
This option determines whether users are able to enter Option ROM configuration screen via
hotkeys during boot.
Enabled (default)
Disabled
One Time Enable
Admin Setup Lockout
Allows you to prevent users from entering Setup when Admin password is set. This option is not set
by default.
Master Password Lockout
Allows you to disable master password support Hard Disk passwords need to be cleared before the
settings can be changed. This option is not set by default.
SMM Security Mitigation
Allows you to enable or disable additional UEFI SMM Security Mitigation protections. This option is
not set by default.
Secure boot
Table 5. Secure Boot
Option
Description
Secure Boot Enable
Allows you to enable or disable Secure Boot feature
Secure Boot Enable
This option is selected by default.
66
System setup