Table 9-2 Computer Setup—Security (continued)
Option Description
●
Requires at least one number
●
Requires at least one upper case character
●
Requires at least one lower case character
●
Allow spaces
Clear Password Jumper
Select ‘Honor’ to engage or ‘Ignore’ to disengage the password jumper. Default is ‘Honor’.
TPM Embedded Security Displays the TPM specication version.
Lets you congure the following TPM settings:
TPM Device
Lets you set the Trusted Platform Module as available or hidden.
TPM State
Select to enable the TPM.
Clear TPM
Select to reset the TPM to an unowned state. After the TPM is cleared, it is also turned o. To temporarily
suspend TPM operations, turn the TPM o instead of clearing it.
CAUTION: Clearing the TPM resets it to factory defaults and turns it o. You will lose all created keys and
data protected by those keys.
BIOS SureStart HP Sure Start veries the integrity of HP BIOS code and critical, non-executable platform data residing in
the main ash and provides self-healing mechanisms to restore any code or critical platform data that
has been lost or is corrupted within the ash.
Verify Boot Block on every boot
Disabled (Default): When set to the default, HP Sure Start will verify the integrity of the BIOS in System
Flash each time the system is in a Sleep, Hibernate, or O state such that assurance is provided that it has
not been tampered with before the host CPU executes that code as part of the process of resuming from
the low power state.
Enabled: When this box is checked, the HP Sure Start will continue to verify the integrity of the BIOS in
System Flash each time the system is in a Sleep, Hibernate, or O state. Additionally, the HP Sure Start
will verify the integrity of the BIOS in System Flash on each Warm Boot (Windows Restart).
BIOS Data Recovery Policy
Automatic (Default): Any problems that are found by HP Sure Start will be automatically repaired not
requiring any special actions by the local user.
Manual (For Advanced Users only): Any problems found by HP Sure Start will not be repaired automatically
and will require a special key sequence input by the local user to proceed with the repair. This mode is only
intended for scenarios where the machine owner would prefer to perform forensics on the system ash
contents before it is repaired and is not recommended for the typical user. In the case of HP Sure Start
nding an issue with the initial BIOS code, the system will refuse to boot and ash a special LED sequence
until the special key sequence is pressed on the internal keyboard.
Network Controller Conguration Restore – This manual control will restore the network parameters
(used by the Intel integrated network controller) stored in System Flash to their factory defaults.
Dynamic Runtime Scanning of Boot Block
Select to enable.
Intel Software Guard
Extensions (SGX)
Let you enable or disable software guard extensions.
64 Chapter 9 Computer Setup (F10) Utility
To Next Page
Loading...
Need help?
General
