Secure Boot Setting
• Enable
• Disable
Enable/Disable secure boot. This setting is modifiable
when “Physical Presence” is asserted and cannot be
loaded to default in Setup Utility. User Mode is the
default setting.
Notes:
• When you attempt to enable secure boot while CSM is
enabled, there is a prompt to tell you.
• Legacy BIOS will be disabled when secure boot is
enabled.
• When you fail to change secure boot settings, verify
physical presence and retry.
Secure Boot Policy
• Factory Policy
• Custom Policy
• Delete All Keys
• Delete PK
• Reset All Keys to
Default
This setting is modifiable when "Physical Presence" is
asserted and cannot be loaded to default in Setup Utility.
[Factory Policy]: Factory default keys will be used after
reboot. Factory Policy is the default setting.
[Custom Policy]: Customized keys will be used after
reboot.
[Delete All Keys]: PK, KEK, DB and DBX will be deleted
after reboot.
[Delete PK]: PK will be deleted after reboot.
"Secure Boot Mode" is [Setup Mode] and "Secure Boot
Policy" is [Custom Policy] after PK is deleted.
[Reset All Keys to Default]: All the keys will be set to
factory defaults and "Secure Boot Policy" is [Factory
Policy] after reboot.
View Secure Boot Keys N/A View the details of PK(Platform Key) , KEK (Key Exchange
Key) , DB (Authorized Signature Database) and DBX
(Forbidden Signature Database).
Secure Boot Custom Policy N/A Customize PK (Platform Key), KEK (Key Exchange Key),
DB (Authorized Signature Database) and DBX (Forbidden
Signature Database).
User could enter this page when “Secure Boot Policy” is
[Custom Policy].
Chapter 3. System configuration and boot management 39
To Next Page
Loading...
