Table 1. Security.
The following table describes the information about
the computer’s security:
Option
Description
Admin Password
Allows you to set, change, and delete the admin
password.
System Password
Allows you to set, change, and delete the system
password.
Internal HDD-0 Password
Allows you to set, change, and delete the computer’s
internal HDD.
Strong Password
This option lets you enable or disable strong
passwords for the system.
Password Configuration
Allows you to control the minimum and maximum number
of characters allowed for a administrative password and the system
password. The range of characters is between 4 and 32.
Password Bypass
This option lets you bypass the System (Boot) Password
and the internal HDD password prompts during a system restart.
Disabled
— Always prompt for the system and internal HDD password when they
are set. This option is disabled by default.
Reboot Bypass
— Bypass the password prompts on Restarts (warm boots).
NOTE: The system
will always prompt for the system and internal HDD passwords when
powered on from the off state (a cold boot). Also, the system will
always prompt for passwords on any module bay HDDs that may be present.
Password Change
This option lets you determine whether changes
to the System and Hard Disk passwords are permitted when an administrator
password is set.
Allow Non-Admin Password Changes - This option is enabled by default.
UEFI Capsule Firmware Updates
This option controls whether this system allows
BIOS updates via UEFI capsule update packages. This option is selected
by default. Disabling this option will block BIOS updates from services
such as Microsoft Windows Update and Linux Vendor Firmware Service
(LVFS)
TPM 2.0 Security
Allows you to control whether the Trusted Platform
Module (TPM) is visible to the operating system.
TPM On (default)
Clear
PPI Bypass
for Enable Commands
PPI Bypass
for Disable Commands
PPI Bypass
for Clear Commands
Attestation Enable (default)
Key Storage Enable (default)
SHA-256 (default)
Choose any one option:
Disabled
Enabled
(default)
Computrace
This field lets you Activate or Disable the BIOS
module interface of the optional Computrace Service from Absolute
Software. Enables or disables the optional Computrace service designed
for asset management.
Deactivate
Disable
Activate - This option is selected by default.
Chassis Intrusion
This field controls the chassis intrusion feature.
Choose any one of the option:
Disabled (default)
Enabled
On-Silent
OROM Keyboard Access
This option determines weather users are able to enter Option ROM Configuration screens via hotkeys during boot.
Enabled (Default)
Disabled
One Time Enable
Admin Setup Lockout
Allows you to prevent users from entering Setup when Admin password is set. This option is
not set by default.
Master Password Lockout
Allows you to disable master password support Hard Disk passwords need to be cleared before the settings can be changed. This
option is
not set by default.
SMM Security Mitigation
Allows you to enable or disable additional UEFI SMM Security Mitigation protections. This option is
not set by default.
Data is not available for the Topic
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\