Managing Self-Encrypting Drives on DGX Station A100
DGX Station A100 DU-10189-001 _v5.0.2|35
5.9. Configuring Trusted Computing
This section provides information about how to configure trusted computing.
The DGX Station A100 system BIOS provides setup controls to configure the following Trusted
Computing (TC) features:
‣
Trusted Platform Module
DGX Station A100 incorporates Trusted Platform Module 2.0 (TPM 2.0), which can be
enabled from the system BIOS. After this module is enabled, the nv-disk-encrypt tool
uses the module to encrypt and store the vault and SED authentication keys.
Using the TPM is preferred because that allows the vault data to persist even if the system
gets re-imaged.
5.9.1. Enabling the TPM
Here are the instructions to enable the TPM.
1. Reboot the DGX Station A100.
2. To enter the BIOS Setup, in the NVIDIA splash screen, press [Del] or [F2].
3. On the Advanced tab, scroll to Trusted Computing and press [Enter].
4. To enable TPM, scroll to Security Device and switch the setting to Enabled.
5. To continue the boot process, save and exit the BIOS Setup .
After the system boots, you can initialize the drive encryption.
5.9.2. Clearing the TPM
If you lost your TPM password, you cannot access the TPM contents. The only way to access
TPM again is to clear the contents. After clearing the TPM, you need to initialize the vault and
SED authentication keys again.
To clear the TPM, complete the following steps:
1. Reboot the DGX Station A100.
2. To enter the BIOS Setup, in the NVIDIA splash screen, press [Del] or [F2].
3. On the Advanced tab, scroll to Trusted Computing and press [Enter].
4. Clear TPM2.
5. Scroll to Trusted Computing and press [Enter].
6. Scroll to Pending Operation and press [Enter].
7. In the Pending Operation dialog box, select TPM Clear, and then press [Enter].
8. Save and exit the BIOS Setup.
To Next Page
Loading...
Need help?
General
