HP EliteOne 1000 Maintenance and Service Guide - Page 60

Computer Setup-Security continued

Get HP EliteOne 1000 PDF manuals and user guides View all HP EliteOne 1000 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 60 highlights

Table 5-2 Computer Setup-Security (continued) Option Description administrator password is set.) Password Policies Let you set the guidelines for a valid password. Options include: ● Password minimum length ● Requires at least one symbol ● Requires at least one number ● Requires at least one upper case character ● Requires at least one lower case character ● Allow spaces Clear Password Jumper Select 'Honor' to allow or 'Ignore' to not allow the absence of the password jumper to clear the passwords at boot up. Default is 'Honor'. Security Configuration TPM Embedded Security ● TPM Specification Version Displays the current TPM version. ● TPM Device Lets you set the Trusted Platform Module as available or hidden. ● TPM State Select to enable the TPM. ● ClearTPM Select to reset the TPM to an unowned state. After the TPM is cleared, it is also turned off. To temporarily suspend TPM operations, turn the TPM off instead of clearing it. CAUTION: Clearing the TPM resets it to factory defaults and turns it off. You will lose all created keys and data protected by those keys. ● TPM Activation Policy ○ F1 to boot ○ Allow user to reject ○ No prompts BIOS SureStart ● Verify Boot Block on every boot - Select to enable HP SureStart. ● BIOS Data Recovery Policy - Select 'Automatic' or 'Manual' to determine data recovery process. Manual recovery is intended only for situations where forensic analysis is desired before HP SureStart recovery. When this policy is set to manual, HP SureStart will not correct any issues that are found until the manual recovery key sequence is input by the local user. This can result in a computer that is unable to boot until the manual recovery key sequence is input. ● Dynamic Runtime Scanning of Boot Block. Verifies the integrity of the BIOS boot block region several times each hour while the system is running. Default is enabled. ● Sure Start BIOS Settings Protection. When enabled, HP Sure Start locks all critical BIOS settings and provides enhanced protection for these settings using non-volatile (flash) memory. NOTE: An administrator password must be set to activate this setting. 52 Chapter 5 Computer Setup (F10) Utility

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
Table 5-2
Computer Setup—Security (continued)
Option
Description
administrator password is
set.)
Password Policies
Let you set the guidelines for a valid password. Options include:
Password minimum length
Requires at least one symbol
Requires at least one number
Requires at least one upper case character
Requires at least one lower case character
Allow spaces
Clear Password Jumper
Select ‘Honor’ to allow or ‘Ignore’ to not allow the absence of the password jumper to clear the passwords
at boot up. Default is ‘Honor’.
Security
Configuration
TPM Embedded Security
TPM
Specification
Version
Displays the current TPM version.
TPM Device
Lets you set the Trusted Platform Module as available or hidden.
TPM State
Select to enable the TPM.
ClearTPM
Select to reset the TPM to an unowned state. After the TPM is cleared, it is also turned
off.
To
temporarily suspend TPM operations, turn the TPM
off
instead of clearing it.
CAUTION:
Clearing the TPM resets it to factory defaults and turns it
off.
You will lose all created
keys and data protected by those keys.
TPM Activation Policy
F1 to boot
Allow user to reject
No prompts
BIOS SureStart
Verify Boot Block on every boot – Select to enable HP SureStart.
BIOS Data Recovery Policy – Select ‘Automatic’ or ‘Manual’ to determine data recovery process.
Manual recovery is intended only for situations where forensic analysis is desired before HP
SureStart recovery. When this policy is set to manual, HP SureStart will not correct any issues that
are found until the manual recovery key sequence is input by the local user. This can result in a
computer that is unable to boot until the manual recovery key sequence is input.
Dynamic Runtime Scanning of Boot Block.
Verifies
the integrity of the BIOS boot block region several
times each hour while the system is running. Default is enabled.
Sure Start BIOS Settings Protection. When enabled, HP Sure Start locks all critical BIOS settings and
provides enhanced protection for these settings using non-volatile
(flash)
memory.
NOTE:
An administrator password must be set to activate this setting.
52
Chapter 5
Computer Setup (F10) Utility