HP EliteDesk 800 95W G4 Maintenance and Service Guide - Page 58

Computer Setup-Security continued

Get HP EliteDesk 800 95W G4 PDF manuals and user guides View all HP EliteDesk 800 95W G4 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 58 highlights

Table 5-2 Computer Setup-Security (continued) Option Description ● Requires at least one lower case character ● Allow spaces Clear Password Jumper Select 'Honor' to allow or 'Ignore' to not allow the absence of the password jumper to clear the passwords at boot up. Default is 'Honor'. Security Configuration TPM Embedded Security ● TPM Specification Version Displays the current TPM version. ● TPM Device Lets you set the Trusted Platform Module as available or hidden. ● TPM State Select to enable the TPM's data store (default). Clear to disable the data store without affecting the data. ● ClearTPM Select to clear the saved keys and data in the TPM's data store on the next boot. After rebooting this field is cleared. CAUTION: Any services using the TPM (for example, Windows' Bitlocker encryption service) will lose functionality that depends on saved data. BIOS Sure Start ● Verify Boot Block on every boot. Default is disabled. ● BIOS Data Recovery Policy. Default is Automatic. IMPORTANT: Only select Manual in situations in which forensic analysis is to be performed before HP Sure Start Recovery. When this policy is set to manual, HP Sure Start will not correct any issues that are found until the manual recovery key sequence is entered by the local user. This can result in a system that is unable to boot after inputting the manual recovery key sequence. ● Sure Start BIOS Settings Protection. This setting requires setting the BIOS Administrator password. Default is disabled. ● Sure Start Secure Boot Keys Protection. Default is enabled. ● Enhanced HP Firmware Runtime Intrusion Prevention and Detection. Enables monitoring of firmware executing out of main memory while the operating system is running. Any anomalies detected in firmware that are active while the operating system is running results in generation of a Sure Start Security Event. Default is enabled. ● Sure Start Security Event Policy. Controls HP Sure Start behavior upon identifying a critical security event (any modification to firmware) during operating system runtime. When set to Log Event Only, HP Sure Start logs all critical security events. When set to Log Event and Notify User, HP Sure Start notifies the user that a critical event has occurred. When set to Log Event and Power Off System, HP Sure Start powers off the system upon detecting a security event. Default is Log Event Only. ● Sure Start Security Event Boot Notification. Default is Require Acknowledgment. HP Secure Platform Management (SPM) ● HP Sure Run Current State (Inactive/Active) ● Deactivate HP Sure Run ● SPM Current State (Not provisoned/Provisioned) 50 Chapter 5 Computer Setup (F10) Utility

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
Table 5-2
Computer Setup—Security (continued)
Option
Description
Requires at least one lower case character
Allow spaces
Clear Password Jumper
Select ‘Honor’ to allow or ‘Ignore’ to not allow the absence of the password jumper to clear the passwords
at boot up. Default is ‘Honor’.
Security
Configuration
TPM Embedded Security
TPM
Specification
Version
Displays the current TPM version.
TPM Device
Lets you set the Trusted Platform Module as available or hidden.
TPM State
Select to enable the TPM’s data store (default). Clear to disable the data store without
affecting
the
data.
ClearTPM
Select to clear the saved keys and data in the TPM’s data store on the next boot. After rebooting this
field
is cleared.
CAUTION:
Any services using the TPM (for example, Windows’ Bitlocker encryption service) will
lose functionality that depends on saved data.
BIOS Sure Start
Verify Boot Block on every boot
. Default is disabled.
BIOS Data Recovery Policy
. Default is Automatic.
IMPORTANT:
Only select Manual in situations in which forensic analysis is to be performed before
HP Sure Start Recovery. When this policy is set to manual, HP Sure Start will not correct any issues
that are found until the manual recovery key sequence is entered by the local user. This can result in
a system that is unable to boot after inputting the manual recovery key sequence.
Sure Start BIOS Settings Protection
. This setting requires setting the BIOS Administrator password.
Default is disabled.
Sure Start Secure Boot Keys Protection
. Default is enabled.
Enhanced HP Firmware Runtime Intrusion Prevention and Detection
. Enables monitoring of
firmware
executing out of main memory while the operating system is running. Any anomalies
detected in
firmware
that are active while the operating system is running results in generation of a
Sure Start Security Event. Default is enabled.
Sure Start Security Event Policy
. Controls HP Sure Start behavior upon identifying a critical security
event (any
modification
to
firmware)
during operating system runtime. When set to
Log Event Only
,
HP Sure Start logs all critical security events. When set to
Log Event and Notify User
, HP Sure Start
notifies
the user that a critical event has occurred. When set to
Log Event and Power
Off
System, HP
Sure Start powers
off
the system upon detecting a security event. Default is
Log Event Only
.
Sure Start Security Event Boot
Notification
. Default is
Require Acknowledgment
.
HP Secure Platform Management (SPM)
HP Sure Run Current State
(Inactive/Active)
Deactivate HP Sure Run
SPM Current State
(Not provisoned/Provisioned)
50
Chapter 5
Computer Setup (F10) Utility