Dell 14 Plus 2-in-1 DB04255 Owner's Manual
BIOS Setup options
| Main | Description |
|---|---|
| System Time | Displays the current time in HH:MM:SS format. |
| System Date | Displays the current date in MM/DD/YYYY format. |
| BIOS Version | Displays the BIOS version number. |
| Product Name | Displays the model number of the computer. |
| Service Tag | Displays the Service Tag of the computer. |
| Asset Tag | Displays the Asset Tag of the computer. |
| CPU Type | Displays the processor type. |
| CPU Speed | Displays the processor speed. |
| CPU ID | Displays the processor ID. |
| CPU Cache | |
| L1 Cache | Displays the processor L1 cache size. |
| L2 Cache | Displays the processor L2 cache size. |
| L3 Cache | Displays the processor L3 cache size. |
| M.2 PCIe SSD | Displays the information of onboard drives. |
| AC Adapter Type | Displays whether an AC adapter is connected. If connected, displays the type of AC adapter that is connected. |
| System Memory | Displays the total memory that is installed on the computer. |
| Memory Speed | Displays the memory speed. |
| Keyboard Type | Displays the type of keyboard that is installed on the computer. |
| Advance | Description |
|---|---|
| USB Emulation | Enables or disables the USB emulation feature. This feature defines
how the BIOS, in the absence of a USB-aware operating system, handles
USB devices. USB emulation is always enabled during POST. NOTE:You
cannot boot to a USB device (floppy, hard drive, or memory key) when
this option is disabled. By default, the USB Emulation option is enabled. |
| Adapter Warnings | Enables the warning messages during boot when the adapters with less
power capacity are detected. By default, the Enable Adapter Warning option is enabled. |
| Function Key Behavior | Allows the user to set the default key behavior of the function key.
By default, the Multimedia Key option is selected. |
| Keyboard Illumination | Configures the operating mode of the keyboard
illumination feature. By default, the Bright option is selected. Enables the keyboard illumination feature at 100% brightness level. |
| Keyboard Backlight Timeout on AC | Sets the timeout value for the keyboard backlight when an
AC adapter is connected to the computer. By default, the 1 minute option is selected. |
| Keyboard Backlight Timeout on Battery | Sets the timeout value for the keyboard backlight when
the computer is running only on the battery power. The keyboard
backlight timeout value is only effective when the backlight is enabled.
By default, the 1 minute option is selected. |
| Battery Health | Displays the battery health of the computer. |
| External USB Ports | Enables or disables the external USB
ports. By default, the External USB Ports option is enabled. |
| Enable Audio | Enables all
integrated audio controller. By default, the Enable Audio option is enabled. |
| Microphone | Enables or disables the microphone. By default, the Microphone option is enabled. |
| Camera | Enables or disables the camera. By default, the Camera option is enabled. |
| Battery Charge Configuration | Allows the user to set the battery charge
settings, with a preselected custom charge start and stop time. By default, the Adaptive option is selected. |
| Advance Battery Charge Configuration | Enables or disables the advanced battery charging feature.
By default, the Advance Battery Charge Configuration option is disabled. |
| IPv4 HTTP Support | Enables or disables the IPv4 HTTP support. By default, the IPv4 HTTP Support option is disabled. |
| IPv6 HTTP Support | Enables or disables the IPv6 HTTP support. By default, the IPv6 HTTP Support option is disabled. |
| Maintenance | |
| Data Wipe on next boot | Enables or disables data wipe on the next boot.
Data Wipe is a secure wipe operation that deletes information from a storage device. CAUTION:The secure Data Wipe
operation deletes information in a way that it cannot be
reconstructed. Commands such as delete and format in the operating system may remove files from showing up in the file system. However, they can be reconstructed through forensic means as they are still represented on the physical media. Data Wipe prevents this reconstruction and is not recoverable. When enabled, the data wipe option will prompt to wipe any storage devices that are connected to the computer on the next boot. By default, the Data Wipe on next boot option is disabled. |
| BIOS Recovery from Hard drive | Allows the user to recover certain corrupted BIOS conditions from a
recovery file on the user's primary hard drive or an external USB drive.
By default, the BIOS Recovery from Hard drive option is enabled. |
| BIOS Auto-Recovery | Allows the user to automatically recover the BIOS
without user actions. By default, the BIOS Auto-Recovery option is disabled. |
| SupportAssist System Resolution | |
| Auto OS Recovery Threshold | Allows the user to set the automatic OS recovery
threshold for the computer. Controls the automatic boot flow for
SupportAssist System Resolution Console and for the Dell OS Recovery
tool. By default, the Auto OS Recovery Threshold is set to 2. |
| SupportAssist OS Recovery | Enables or disables the boot flow for SupportAssist OS
Recovery tool when certain system errors occur. By default, the SupportAssist OS Recovery option is enabled. |
| Security | Description | |
|---|---|---|
| Admin Password | Displays if the administrator password is
clear or set. By default, the Admin Password is not set. |
|
| System Password | Displays if the system password is clear or
set. By default, the System Password is not set. |
|
| Asset Tag | Allows the user to create a computer Asset
Tag that can be used by an IT administrator to uniquely identify a
particular computer. NOTE:Once set in the BIOS,
the Asset Tag cannot be changed.
|
|
| Admin Password | Allows the user to set the administrator
password. The Administrator Password prevents unauthorized access to the BIOS Setup options. Once the administrator password is set, the BIOS setup options can only be modified after providing the correct password. The following rules and dependencies apply to the Administrator Password -
Dell Technologies recommends using an administrator password to prevent unauthorized changes to BIOS setup options. |
|
| System Password | Allows the user to set the system password. The System Password prevents the computer from booting to an operating system without entering the correct password. The following rules and dependencies apply when the System Password is used -
Dell Technologies recommends using the computer password in situations where it is likely that a computer may be lost or stolen. |
|
| Password Change | Allows the user to permit or deny system
password or hard disk drive password changes. By default, the Permitted option is selected. |
|
| Absolute | Absolute Software provides various cyber
security solutions, some requiring software preloaded on Dell computers
and integrated into the BIOS. To use these features, you must enable the
Absolute BIOS setting and contact Absolute for configuration and
activation. By default, the Absolute option is disabled. For additional security, Dell Technologies recommends keeping the Absolute option disabled. NOTE:When the Absolute
features are activated, the Absolute integration cannot be disabled
from the BIOS setup screen.
|
|
| Absolute Status | Allows the user to activate or deactivate the
Absolute Status feature. Displays if the system password is clear or
set. By default, the Absolute Status is deactivated. |
|
| WINDOWS SMM SECURITY MITIGATIONS TABLE (WSMT) | Enables or disables configuration of
platform features on Dell Client Systems with WSMT-enabled BIOS. By default, the WINDOWS SMM SECURITY MITIGATIONS TABLE (WSMT) option is disabled. |
|
| Firmware TPM | Enables or disables the firmware TPM. By default, the Firmware TPM option is disabled. |
|
| PPI Bypass for Clear Command | Allows the user to control the TPM Physical
Presence Interface (PPI). When enabled, this setting allows the
operating system to skip BIOS PPI user prompts when issuing the Clear
command. Changes to this setting take effect immediately. By default, the PPI Bypass for Clear Commands option is disabled. For additional security, Dell Technologies recommends keeping the PPI Bypass for Clear Commands option disabled. |
|
| Enable Master Password Lockout | When enabled, this disables the master password
support. By default, the Enable Master Password Lockout option is disabled. |
|
| Pluton Security Processor | Pluton is a secure cryptoprocessor that is
built into the CPU for security at the core to ensure code integrity and
the latest protection with updates that are delivered by Microsoft
through Windows Update. Pluton protects credentials, identities,
personal data, and encryption keys. Information is significantly harder
to be removed even if an attacker installs malware or has complete
physical possession of the computer. It is designed to provide the functionality of the Trusted Platform Module (TPM) and deliver other security functionality beyond what is possible with the TPM 2.0 specification, and allows for other Pluton firmware and OS features to be delivered over time over Windows Update. For more information, see Microsoft Pluton as TPM. By default, the Pluton Security Processor option is enabled. |
|
| TPM Security | ||
| PPI Bypass for Enable Commands |
The Physical Presence Interface (PPI) Bypass options can be used to allow the operating system to manage certain aspects of the TPM. If these options are enabled, you are not prompted to confirm certain changes to the TPM configuration. By default, the PPI Bypass for Enable Commands option is disabled. For additional security, Dell Technologies recommends keeping the PPI Bypass for Enable Commands option enabled. |
|
| PPI Bypass for Disable Commands |
By default, the PPI Bypass for Disable Commands option is disabled. For additional security, Dell Technologies recommends keeping the PPI Bypass for Disable Commands option disabled. |
|
| Attestation Enable | The Attestation Enable
option controls the endorsement hierarchy of TPM. Disabling the
Attestation Enable option prevents TPM from
being used to digitally sign certificates. By default, the Attestation Enable option is enabled. For additional security, Dell Technologies recommends keeping the Attestation Enable option enabled. NOTE:When disabled, this
feature may cause compatibility issues or loss of functionality in
some operating systems.
|
|
| Key Storage Enable | The Key Storage Enable
option controls the storage hierarchy of TPM, which is used to store
digital keys. Disabling the Key Storage Enable
option restricts the ability of TPM to store owner's data. By default, the Key Storage Enable option is enabled. For additional security, Dell Technologies recommends keeping the Key Storage Enable option enabled. NOTE:When disabled, this
feature may cause compatibility issues or loss of functionality in
some operating systems.
|
|
| SHA-256 | Allows the user to control the hashing
algorithm that is used by the TPM. When enabled, the TPM uses the
SHA-256 hashing algorithm. When disabled, the TPM uses the SHA-1 hash
algorithm. By default, the SHA-256 option is enabled. For additional security, Dell Technologies recommends keeping the SHA-256 option enabled. |
|
| Clear | When enabled, the
Clear option clears information that is
stored in the TPM after exiting the computer's BIOS. This option returns
to the disabled state when the computer restarts. By default, the Clear option is disabled. Dell Technologies recommends enabling the Clear option only when TPM data is required to be cleared. |
|
| TPM State | Enables or disables the Trusted Platform
Module (TPM). This is the normal operating state for the Trusted
Platform Module (TPM) when you want to use its complete array of
capabilities. By default, the TPM State option is enabled. |
|
| Enable Pre-Boot DMA Support | Allows the user to control the Pre-Boot DMA
protection for both internal and external ports. This option does not
directly enable DMA protection in the operating system. NOTE:This option is not
available when the virtualization setting for IOMMU is disabled
(VT-d/AMD Vi).
By default, the Enable Pre-Boot DMA Support option is disabled. For additional security, Dell Technologies recommends keeping the Enable Pre-Boot DMA Support option disabled. NOTE:This option is
provided only for compatibility purposes, as certain older hardware
may not be DMA compliant.
|
|
| Enable OS Kernel DMA Support | Allows you to control the Kernel DMA
protection for both internal and external ports. This option does not
directly enable DMA protection in the operating system. For operating
systems that support DMA protection, this setting indicates to the
operating system that the BIOS supports the feature. NOTE:This option is not
available when the virtualization setting for IOMMU is disabled
(VT-d/AMD Vi).
By default, the Enable OS Kernel DMA Support option is disabled. NOTE:This option is
provided only for compatibility purposes, as certain older hardware
may not be DMA compliant.
|
|
| Internal Port DMA Compatibility Mode | Allows you to control the boot compatibility
for integrated PCIe peripherals by disabling PCIe DMA protection on
internal PCIe ports. When enabled, BIOS will notify the operating system that the internal ports are not DMA capable. This option is to help with devices that have operating system DMA compatibility issues. This option does not directly enable DMA protection in the operating system. NOTE:This option is not
available when the virtualization setting for IOMMU is disabled
(VT-d/AMD Vi).
By default, the Internal Port DMA Compatibility Mode option is enabled. NOTE:This option is
provided only for compatibility purposes, as certain older hardware
may not be DMA compliant.
|
|
| UEFI Firmware Capsule Updates | Enables or disables BIOS updates through UEFI
capsule update packages. NOTE:Disabling this option
blocks the BIOS updates from services such as Microsoft Windows
Update and Linux Vendor Firmware Service (LVFS).
By default, the UEFI Capsule Firmware Updates option is enabled. |
|
| Secure Boot | Secure Boot is a method of guaranteeing the integrity of the boot path by performing additional validation of the operating system and PCI add-in cards. The computer stops booting to the operating system when a component is not authenticated during the boot process. Secure Boot can be enabled in BIOS setup or using management interfaces like Dell Command | Configure, but can only be disabled from BIOS setup. | |
| Secure Boot | Enables or disables the computer to boot
using only validated boot software. By default, the Enable Secure Boot option is enabled. For additional security, Dell Technologies recommends keeping the Secure Boot option enabled to ensure that the UEFI firmware validates the operating system during the boot process. NOTE:For Secure Boot to
be enabled, the computer is required to be in UEFI boot mode and the
Enable Legacy Option ROMs option is required to be turned off.
|
|
| Select Secure Boot | Allows the user to select the Secure Boot
operation mode. By default, the Deployed Mode option is selected. NOTE:Deployed
Mode should be selected for normal operation of
Secure Boot.
|
|
| Boot | Description |
|---|---|
| File Browser Add Boot Option | Allows the user to add boot options. |
| File Browser Del Boot Option | Allows the user to delete boot options. |
| UEFI Boot | Displays the boot sequence. |
| Exit | Description | |
|---|---|---|
| Exit Saving Changes | Allows the user to save the changes and exit the BIOS setup. | |
| Save Change Without Exit | Allows the user to save the changes without exiting the BIOS setup. | |
| Exit Discarding Changes | Allows the user to exit the BIOS setup without saving the changes. | |
| Load Optimal Defaults | Allows the user to restore default values for all BIOS setup options. | |
| Discard Changes | Allows the user to load previous values for all BIOS setup options. | |