Dell Wyse 5070 Windows 10 IoT Enterprise for Wyse Thin Clients Administrator s - Page 24

In the Component Services console, click the

Event Viewer

icon from the

Console Root

tree. The summary of all the logs of the events

that have occurred on your computer is displayed. For more information, see

Event Viewer

at

https://support.microsoft.com

.

Managing services

To view and manage the services installed on the thin client device, use the

Services

window. To open the

Services

window, go to

Start

>

Control Panel

>

Administrative Tool Services

.

Steps

1.

In the

Component Services

console, click the

Services

icon from the console tree.

The list of services is displayed.

2.

Right-click the service of your choice. You can perform Start, Stop, Pause, Resume, and Restart operations.

You can select the Startup type from the drop-down list:

•

Automatic (Delayed Start)

•

Automatic

•

Manual

•

Disabled

For more information, see

Component Services Administration

at

https://support.microsoft.com

.

NOTE:

Ensure that the Write Filter is disabled while managing the services.

Using TPM and BitLocker

Trusted Platform Module (TPM)—A TPM is a microchip that provides basic security-related functions, that primarily involve encryption

keys.

BitLocker Drive Encryption (BDE)—A BDE is a full disk encryption feature that protects data by providing encryption for entire volumes.

By default, it uses the AES encryption algorithm in Cipher Block Chaining (CBC) mode with a 128-bit key. This algorithm is combined with

the Elephant diffuser for extra disk encryption-specific security.

Windows 10 IoT Enterprise does not support sysprep on a BitLocker encrypted device. Due to this limitation, you cannot encrypt the

device, perform a sysprep, and pull the image. To overcome this issue, you must add or modify the TPM script. The device must not be

encrypted before sysprep (pull). The device encryption is handled by the post push script that uses the

TPM_enable.ps1

script that is

at

C:\Windows\setup\tools\

. The post push script must be included before enabling the UWF and after sysprep scripts. The PIN

used to encrypt the client must be passed to the script as an argument.

You can initialize TPM and enable BitLocker using any of the following methods:

•

Initialize TPM and enable BitLocker using the imaging script

.

•

Initialize TPM and enable BitLocker manually

.

Initialize TPM and enable BitLocker using the imaging

script

Prerequisites

Enable alphanumeric pin support for TPM and BitLocker using the following steps:

1.

Log in to the administrator account.

2.

Disable Unified Write Filter.

The thin client restarts.

3.

Log in to the administrator account again.

4.

Open

gpedit.msc

using the run command menu.

5.

Go to

Local Group Policy

>

Computer Configuration

>

Administrative Templates

>

Windows Components

>

BitLocker

Drive Encryption

>

Operating System Drives

>

Allow enhanced PINs

.

The

Allow enhanced PINs for startup

window is displayed.

6.

Select the

Enabled

option.

24

Administrative features

Section	Page
Windows 10 IoT Enterprise for Dell Wyse Thin Clients Administrator’s Guide	3
Introduction	6
Technical support	6
About this guide	6
Supported thin clients	6
Getting started	7
Automatic and manual login	7
Before configuring your thin clients	7
Using your desktop	8
Using the Start Menu	8
Using the search box	8
Grouping Applications into Desktops	8
Using Action Center	8
Connecting to a printer or an external device	9
Connecting to a monitor	9
Power state	9
Accessible applications	10
Browsing with Internet Explorer	10
Using the Dell Thin Client Application	10
Configuring Citrix Receiver session services	11
Citrix Workspace app	11
Configuring remote desktop connection session services	12
Using VMware Horizon Client to connect to virtual desktop	12
Using Ericom Connect and WebConnect client	13
Using Ericom PowerTerm Terminal Emulation	14
Windows Media Player	14
Wyse Easy Setup	14
Overlay Optimizer	15
Dell Secure Client	15
Key features of Dell Secure Client	15
Accessing Dell Secure Client	15
Configuring Dell Secure Client	16
Configuring policy using the Dell Secure Client user interface	16
Import a configuration	16
Export a configuration	16
CSV format	16
JSON format	17
Self-extracting file	19
Deploying a configuration	19
Command-line options	19
Generate and view logfiles	21
Tips and best practices	21
Error codes	21
Administrative features	23
Using Administrative tools	23
Configuring component services	23
Viewing events	23
Managing services	24
Using TPM and BitLocker	24
Initialize TPM and enable BitLocker using the imaging script	24
Initialize TPM and enable BitLocker manually	25
Configuring Bluetooth connections	26
Configuring wireless local area network settings	27
Using custom fields	27
Configuring RAM disk size	27
Enabling auto logon	28
System shortcuts	28
Viewing and configuring SCCM components	29
System Center Configuration Manager Client 2016 and 2019	29
Devices and printers	29
Adding printers	29
Adding devices	30
Configuring multi-monitor display	30
Managing audio and audio devices	30
Using sound dialog box	31
Setting region	31
Managing user accounts	31
Using Windows Defender	32
Windows Defender Advanced Threat Protection	32
Threat Defense	32
Endpoint Security Suite Enterprise	32
C-A-D tool	32
Wyse Device Agent	33
Citrix HDX RealTime Media Engine	33
Viewing and exporting operating system image manifest files	33
Viewing and exporting operating system image current manifest information	33
Viewing operating system image factory manifest information	34
Dell Docking Station WD19	34
Additional administrator utility and settings information	35
Automatically launched utilities	35
Utilities affected by log off, restart, and shut down	35
Unified Write Filter	36
Using Unified Write Filter	37
Running Unified Write Filter command–line options	37
Enabling and disabling the Write Filter using the desktop icons	38
Setting Write Filter controls	38
Application Launch Manager	39
ALM CLI tool	39
Configuration of nodes using ALM	39
xData Cleanup Manager	40
xDCM CLI tool	40
Configuration of nodes using xDCM	40
Capturing logfiles	41
Configuration of DebugLog XML file	42
Saving files and using local drives	42
Mapping network drives	43
Participating in domains	43
Using the Net and Tracert utilities	44
Managing Users and Groups with User Accounts	44
Creating user accounts	44
Editing user accounts	45
Configuring user profiles	45
Changing the computer name of a thin client	45
System administration	47
Accessing thin client BIOS settings	47
Unified Extensible Firmware Interface and secure boot	47
Booting from DOS USB key	47
Creating bootable UEFI USB key	48
Using Dell Wyse Management Suite	48
Ports and slots	48
TightVNC—server and viewer	48
TightVNC—Pre-requisites	49
Using TightVNC to shadow a thin client	49
Configuring TightVNC server properties on the thin client	50
Network architecture and server environment	51
Understanding how to configure your network services	51
Using Dynamic Host Configuration Protocol	51
DHCP options	51
Using Domain Name System	52
About Citrix Studio	52
About VMware Horizon View Manager	53
Installing firmware using USB Imaging Tool	54
Frequently asked questions	55
How to install Skype for Business	55
How to set up a smart card reader	55
How to use USB Redirection	55
How to capture and push Windows 10 IoT Enterprise operating system image	55
Troubleshooting	56
Keyboard customization issues	56
Resolving memory issues	56
Using Windows Task Manager	56
Using Unified Write Filter	56
Using File Explorer	56
Blue screen error or BSOD issues	56

Dell Wyse 5070 Windows 10 IoT Enterprise for Wyse Thin Clients Administrator s - Page 24

Managing services, Using TPM and BitLocker

Page 24 highlights