1. System Utilities
Express5800/R120h-1E, R120h-2E Maintenance Guide
107
Chapter 2 Useful Features
(a) Secure Boot Settings Menu
When you select System Configuration > BIOS/Platform Configuration (RBSU) > Server Security > Secure
Boot Settings from the System Utilities, the Secure Boot Settings menu appears.
For details about the options, see the table below.
Option Parameter Description
Current Secure Boot State (Display only) This option shows whether Secure Boot is currently
enabled or disabled.
Attempt Secure Boot Enabled
[Disabled]
Enable/Disable the Secure Boot feature after
platform reset.
Advance Secure Boot
Options
-
Use this option to configure Advanced Secure Boot
options, such as Platform Key (PK) Options, Key
Exchange (KEK) Options, Allowed Signatures
Database (DB), and Forbidden Signatures Database
(DBX) Options.
[ ]: Default setting
Tips To enable Secure Boot, it is recommended that you set Admin Password.
To make the option card recognizable as a bootable device when Secure
Boot has been enabled, you need to have an option card UEFI driver that has
been signed with the Microsoft key.
Advance Secure Boot Options Menu
①.
When you select System Configuration > BIOS/Platform Configuration (RBSU) > Server Security > Secure
Boot Settings > Advance Secure Boot Options from the System Utilities, the Secure Boot Settings menu
appears.
For details about the options, see the table below.
Option Parameter Description
PK - Platform Key
-
Select this option to display the Platform Key (PK)
Options menu. Use this menu to enroll or delete the PK
certificate. The file must be in DER-encoded
certificate format.
KEK - Key Exchange Key
-
Select this option to display the Key Exchange Key
(KEK) Options menu. Use this menu to enroll, delete,
view or export the KEK certificates. The file must be in
DER-encoded certificate format.
DB - Allowed Signatures
Database
-
Select this option to display the Allowed Signatures
(DB) Options menu. Use this menu to enroll, delete,
view or export the DB signatures.
DBX - Forbidden
Signatures Database
-
Select this option to display the Forbidden Signatures
(DBX) Options menu. Use this menu to enroll, delete,
view or export the DBX signatures.
DBT - Timestamp
Signatures Database
-
Select this option to display the Secure Boot
Timestamps Signatures Database (DBT) Options
menu. Use this menu to enroll, delete, view or export
the DBT signatures.
Delete all keys
-
Deletes all the keys, i.e. PK, KEK, DB, and DBX.
Export all keys
-
Use this option to export all keys to files.
Reset all keys to platform
defaults
-
Reinitializes all the keys to the platform defaults.
To Next Page
Loading...
