Home » HP Manuals » Servers » HP Integrity rx2800 » Manual Viewer

HP Integrity rx2800 HP Smart Update Manager User Guide - Page 21

When the Local Group Policy Editor starts, click

View all HP Integrity rx2800 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 21 highlights

If HP Smart Update Manager detects a TPM, a pop-up warning message appears. To enable firmware updates without the need to type in the TPM password on each server, the BitLocker Drive Encryption must be temporarily disabled. Disabling the BitLocker Drive Encryption keeps the hard drive data encrypted. However, BitLocker uses a plain text decryption key that is stored on the hard drive to read the information. After the firmware updates have been completed, the BitLocker Drive Encryption can be re-enabled. Once the BitLocker Drive Encryption has been re-enabled, the plain text key is removed and BitLocker secures the drive again. NOTE: Temporarily disabling BitLocker Drive Encryption can compromise drive security and should only be attempted in a secure environment. If you are unable to provide a secure environment, HP recommends providing the boot password and leaving BitLocker Drive Encryption enabled throughout the firmware update process. This requires the /tpmbypass parameter for HP Smart Update Manager or the firmware update is blocked. To temporarily disable BitLocker support to allow firmware updates, perform the following: 1. Click Start, and then search for gpedit.msc in the Search Text box. 2. When the Local Group Policy Editor starts, click Local Computer Policy. 3. Click Computer Configuration>Administrative Templates>Windows Components>BitLocker Drive Encryption. 4. When the BitLocker settings are displayed, double-click Control Panel Setup: Enable Advanced startup options. 5. When the dialog box appears, click Disable. Introduction 21

Section	Page
HP Smart Update Manager User Guide	1
Notice	2
Contents	3
Introduction	6
HP Smart Update Manager overview	6
Using this guide	7
New features of HP SUM 4.1.0	7
Minimum requirements	7
Minimum requirements for Windows servers	7
Minimum requirements for Linux x86 servers	8
Supported deliverables overview	11
Obtaining the HP SUM utility	11
Support and limitations of HP SUM	11
Deployment from HP SUM	12
Executing HP SUM	12
Deploying software using the ProLiant Support Pack (PSP) for Microsoft Windows	15
Deploying software using the Integrity Support Pack (ISP) for Microsoft Windows	15
Deploying software using the ProLiant Support Pack for Linux	15
Deploying firmware for ProLiant servers using the HP Smart Update Firmware DVD	16
HP SUM supported firmware for HP ProLiant servers	17
HP USB key utility	18
Using a hard drive	19
Deploying components not on HP Smart Update Firmware DVD	20
Trusted Platform Module	20
TPM scenarios	22
Deploying firmware using the HP Smart Update Firmware - HP Integrity BL860c/BL870c/BL890c i2 Servers Bundles	23
HP SUM supported firmware for HP Integrity servers	23
HP SUM User Interface	24
Deployment scenarios	24
Graphical deployment on a local host	24
Scripted deployment on a local host	24
Deployment to multiple remote hosts	25
Keyboard support	25
Local host installations	26
Selecting the location to check for updates	26
Download Permission (applicable only for ProLiant servers)	29
Selecting an installation host	30
Selecting bundles to filter	32
Selecting components to install	34
Status field	36
Reboot section	37
Component selection pane	38
Installation options	42
Viewing the installation results	43
Multiple-host installations	45
Selecting remote hosts or groups	46
Searching for remote hosts	47
Managing hosts	47
Managing groups	51
Entering credentials for hosts	54
Selecting bundles to filter on multiple hosts	58
Selecting components to install on multiple hosts	59
Updating Firmware on HP Integrity BL860c/BL870c/BL890c i2 Servers	60
Viewing the installation results for multiple hosts	63
Scripted deployment	65
Command-line interface	65
Command-line syntax	65
Command-line arguments	66
Component configuration for Windows components only	71
Command-line examples	71
Return codes	73
Windows smart component return codes	73
Linux smart component return codes	74
Linux RPM return codes	74
Input files	74
Command-line usage of input file	75
Input file format and rules	75
File encoding	76
Error reporting	76
Input file parameters	76
Reports	85
Advanced topics	90
Software component configuration	90
Deploying firmware and software simultaneously	91
Server virtualization detection and support	91
Configuring IPv6 networks with HP Smart Update Manager	91
Configuring IPv6 for Windows Server 2003	92
Configuring IPv6 for Windows Server 2008	93
Limitations of IPv6 for Windows Server 2003 and Windows Server 2008	95
Configuring IPv6 for Linux	95
Limitations of IPv6 for Linux	97
Troubleshooting	98
Recovering from a failed ROM upgrade	98
Recovering from a failed system ROM upgrade	98
Redundant ROM recovery	98
ROMPaq recovery	98
Recovering from a failed option ROM upgrade	99
Array controller ROMs	99
Lights-Out management ROMs	99
Recovering from an installation failure	100
Collecting trace directories	100
Recovering from a discovery failure	101
Troubleshooting connection errors	101
HP SUM hangs during discovery	102
Recovering from a loss of Linux remote functionality	102
Configuring firewall settings	102
Recovering from a blocked program on Microsoft Windows	103
Configuring Windows firewall settings	103
Enabling ports in HP Smart Update Manager	103
Recovering from operating system limitations when using a Japanese character set	105
Displaying the user-specified reboot message using a Japanese character set when running on a Linux operating system	105
Rebooting with the user-specified reboot message using a Japanese character set when running on a Windows operating system	105
Recovering from Fatal Error - application will exit message	106
Running in a directory path containing double-byte characters	106
Recovering from a missing reboot message when running on SUSE LINUX Enterprise Server 9	106
Running HP Smart Update Manager on SUSE LINUX Enterprise Server 9	106
Recovering a lost HP Smart Update Manager connection	107
HP Smart Update Firmware DVD mounted using iLO virtual media	107
Troubleshooting HP Smart Update Manager in IPv6 networks	107
Troubleshooting HP Smart Update Manager in IPv6 Windows Server 2003 environment	107
Troubleshooting HP Smart Update Manager in IPv6 Windows Server 2008 environment	108
Troubleshooting HP Smart Update Manager in IPv6 Red Hat and Novell SUSE-based Linux environments	108
HP SUM found new hardware message	109
Non-matching systems error reported when building source Linux RPMs or installing Linux RPMs built from source	109
Linux component version discrepancy for source RPMs	110
HP SUM displays No components found in the selected repository(ies) message	110
Additional/Optional Actions columns are grayed when HP SUM is maximized	110
Installation of components failed with 'Update returned an error' when installing Linux RPMs	110
Issues related to bundle filtering on the Select Items to be Installed and Select Bundle Filter screens	111
HP SUM fails on Windows Vista® due to McAfee firewalls	112
Virtual Connect firmware upgrade using HP SUM fails if VC reports an invalid or bad health state	115
Technical support	117
Reference documentation	117
Operating system information	118
HP contact information	118
Acronyms and abbreviations	119

Match case Limit results 1 per page

Introduction 21

If HP Smart Update Manager detects a TPM, a pop-up warning message appears.

To enable firmware updates without the need to type in the TPM password on each server, the BitLocker

Drive Encryption must be temporarily disabled. Disabling the BitLocker Drive Encryption keeps the hard

drive data encrypted. However, BitLocker uses a plain text decryption key that is stored on the hard drive

to read the information. After the firmware updates have been completed, the BitLocker Drive Encryption

can be re-enabled. Once the BitLocker Drive Encryption has been re-enabled, the plain text key is

removed and BitLocker secures the drive again.

NOTE:

Temporarily disabling BitLocker Drive Encryption can compromise drive security and

should only be attempted in a secure environment. If you are unable to provide a secure

environment, HP recommends providing the boot password and leaving BitLocker Drive

Encryption enabled throughout the firmware update process. This requires the /tpmbypass

parameter for HP Smart Update Manager or the firmware update is blocked.

To temporarily disable BitLocker support to allow firmware updates, perform the following:

Click

Start,

and then search for gpedit.msc in the Search Text box.

When the Local Group Policy Editor starts, click

Local Computer Policy.

Click

Computer Configuration>Administrative Templates>Windows Components>BitLocker Drive

Encryption.

When the BitLocker settings are displayed, double-click

Control Panel Setup: Enable Advanced

startup options.

When the dialog box appears, click

Disable.