EasyManua.ls Logo

Rohde & Schwarz R&S Trusted Disk 3.3.1 - Activating Setup Mode (UEFI;GPT)

Rohde & Schwarz R&S Trusted Disk 3.3.1
49 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Installation and full-disk encryption
23Administration manual 4603.7988.02 ─ 03
vate setup mode, see Chapter 4.4.2, "Activating setup mode (UEFI/GPT)",
on page 23.
To complete the full-disk encryption, restart the workstation.
The workstation starts the pre-boot authentication. After a successful authentica-
tion, the workstation boots and the selected partitions are encrypted.
4.4.2 Activating setup mode (UEFI/GPT)
On UEFI-based workstations, R&S Trusted Disk needs to replace pre-installed Secure
Boot certificates with Rohde & Schwarz Cybersecurity GmbH certificates. For
R&S Trusted Disk to do this, you need to activate setup mode after initializing the full-
disk encryption. Only then can the workstation boot and the hard disk drive be encryp-
ted.
Please note that different systems use different UEFI menu structures, i.e. this chapter
is not a "one fits all" instruction on enabling Secure Boot. It is only supposed to be a
rough guideline. For more detailed instructions, refer to the user documentation of the
hardware.
Usually, current systems offer one of the following options to activate setup mode:
Activating setup mode directly
Deleting all pre-installed Secure Boot certificates
To activate setup mode, proceed as follows:
1. After the full-disk encryption is initialized, restart the system.
2. Access the UEFI.
Note: For instructions on how to access the UEFI, see Chapter 3.4.2, "Enabling
Secure Boot", on page 18.
3. In the UEFI, navigate to the Secure Boot settings.
4. Enable setup mode or delete all pre-installed certificates.
5. To save and exit, follow the instructions of the UEFI.
With setup mode active, R&S Trusted Disk now starts the system takeover, i.e the
pre-installed certificates are replaced. This process takes only a few seconds and
creates no output on the screen. The workstation then restarts again and displays
the pre-boot authentication screen. After a successful authentication, the worksta-
tion boots and the selected partitions are encrypted.
For examples of how to activate setup mode, see Chapter 7.1, "Activating setup mode
(UEFI/GPT)", on page 41.
Initializing the full-disk encryption

Table of Contents