Table 1. SecurityThe following table describes the information about
the computer’s security:
Option
Description
Strong Password
This option lets you enable or disable strong
passwords for the system. The option is disabled by default.
Password Configuration
Allows you to control the minimum and maximum number
of characters allowed for a administrative password and the system
password. The range of characters is between 4 and 32.
Password Bypass
This option lets you bypass the System (Boot) Password
and the internal HDD password prompts during a system restart.
Disabled — Always prompt for the system and internal HDD password when they
are set. This option is enabled by default.
Reboot Bypass
— Bypass the password prompts on Restarts (warm boots).
NOTE:The system
will always prompt for the system and internal HDD passwords when
powered on from the off state (a cold boot). Also, the system will
always prompt for passwords on any module bay HDDs that may be present.
Password Change
This option lets you determine whether changes
to the System and Hard Disk passwords are permitted when an administrator
password is set.
Allow Non-Admin Password Changes - This option is enabled by default.
UEFI Capsule Firmware Updates
This option controls whether this system allows
BIOS updates via UEFI capsule update packages. This option is selected
by default. Disabling this option will block BIOS updates from services
such as Microsoft Windows Update and Linux Vendor Firmware Service
(LVFS)
TPM 2.0 Security
Allows you to control whether the Trusted Platform
Module (TPM) is visible to the operating system.
TPM On (default)
Clear
PPI Bypass
for Enable Commands
PPI Bypass
for Disable Commands
PPI Bypass for Clear
Commands
Attestation Enable (default)
Key Storage Enable (default)
SHA-256 (default)
Choose any one option:
Disabled
Enabled (default)
Absolute
This field lets you Enable, Disable or Permanently Disable the BIOS module interface of the optional Absolute Persistence Module service from Absolute Software.
Enabled (default)
Disabled
Permanently Disabled
Chassis Intrusion
This field controls the chassis intrusion feature.
Choose any one of the option:
Disabled (default)
Enabled
On-Silent
OROM Keyboard Access
Disabled
Enabled (default)
One Time
Enable
Admin Setup Lockout
Allows you to prevent users from entering Setup
when Admin password is set. This option is not set by default.
SMM Security Mitigation
Allows you to enable or disable additional UEFI
SMM Security Mitigation protections. This option is not set by default.
Data is not available for the Topic
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\