HP ProDesk 400 G5 Micro PC Commercial BIOS UEFI Setup - Page 23
Feature, Description, Default, Notes
View all HP ProDesk 400 G5 Micro manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 23 highlights
HP PC Commercial BIOS (UEFI) Setup July 2020 919946-004 Feature BIOS Sure Start Secure Boot Configuration Secure Platform Management (SPM) Physical Presence Interface Smart Cover Trusted Execution Technology (TXT) Intel Software Guard Extensions (SGX) Full encryption of main memory (DRAM) Hard Drive Utilities Absolute Persistence Module Activation Status Absolute Persistence Module Permanent Disable Type Menu Menu Description Settings that control the behavior of HP Sure Start. HP Sure Start is a built-in hardware security system that protects your BIOS from accidental or malicious corruption by (1) detecting BIOS corruption and then (2) automatically restoring the BIOS to its last installed HP-certified version. Some platforms in 2019 have the capability to recover Intel ME as well. Default Options for managing Secure Boot state and Secure Boot keys. Secure Boot is a UEFI feature that helps resist attacks and infection from malware. From the factory your system came with a list of keys that identify trusted hardware, firmware, and operating system loader code. Your system also has a list of keys to identify known malware. Menu Menu Setting Setting Setting Options for managing HP Sure Run and HP Sure Recover and Sure Admin Enable or disable the local prompt to confirm that a sensitive setting change was requested by the user. Controls settings for Cover Lock and Cover Sensor When checked, enables Trusted Execution Technology on select Intel-based systems. NOTE: Enabling this feature disables OS management of TPM ( Embedded Security Device), prevents a reset of the TPM, and constrains the configuration of VTx, VTd, and TPM Enables Intel Software Guard Extensions. The following settings are possible: • Disable • Enable • Software control When checked, the system stores all data to DRAM in an encrypted format. Checked Unchecked Software control -or- Disable (non-vPro) Checked Menu Label Display Only Display Only Utilities to protect private information on individual hard drives: Drive Lock and Secure Erase. A subscription service that provides PC theft recovery, tracking and data delete solutions The subscription status can be inactive, active, or permanently disabled. Shows current state of the Absolute Persistence module (Yes = disabled, No = available). Inactive No Notes Only located here on systems without legacy support. Intel Only Reboot Required Intel Only Select products only © Copyright 2016-2020 HP Development Company, L.P. 4 Security Menu 23