Dell Latitude 9510 Service Manual - Page 62

Secure Boot

Get Dell Latitude 9510 PDF manuals and user guides View all Dell Latitude 9510 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 62 highlights

Option Description NOTE: Disabling this option will block BIOS updates from services such as Microsoft Windows Update and Linux Vendor Firmware Service (LVFS). TPM 2.0 Security Allows you to enable the Trusted Platform Module (TPM) during POST. You can control whether the trusted platform module is visible to the operating system. The option is: • TPM on This option is selected by default. • Clear • PPI Bypass for Disable Commands • PPI Bypass for Clear Command" in TPM 2.0 Security. • Attestation Enable. This option is selected by default. • PPI Bypass for Disable Commands • Key Storage Enable. This option is selected by default. • SHA-256. This option is selected by default. CAUTION: For the TPM upgrade/downgrade process, it is recommended to complete the process in an AC power with AC adapter plugged into the computer. The upgrade/downgrade process without the AC adapter plugged in might damage the computer or hard disk. NOTE: Disabling this option does not change any settings you have made to the TPM, nor does it delete or change any information or keys you may have stored in the TPM. Changes to this setting take effect immediately. Absolute (R) Allows you to activate or disable the optional Computrace Service from Absolute software. The options are: • Deactivate • Disable • Activate NOTE: The Activate and Disable options will permanently activate or disable the feature and no further changes will be allowed Default setting: Activate Admin Setup Lockout Allows you to prevent users from entering the setup when an Administrator password is set. Enable Admin Setup Lockout This option is not selected by default. Master Password Lockout Allows you to prevent users from entering the setup when an Master password is set. Hard disk passwords need to be cleared before the setting can be changed. Enable Master Password Lockout This option is not selected by default. SSM Security Mitigation Allows you to enable or disable additional UEFI SMM Security Mitigation protections. The OS can use the feature to help protect the secure environment created by virtualization based security. SSM Security Mitigation This option is disabled by default. Secure Boot Option Description Secure Boot Enable This option enables or disables the Secure Boot feature. • Disabled • Enabled Default setting: Enabled. Expert Key Management Allows you to manipulate the security key databases only if the system is in Custom Mode. The Enable Custom Mode option is disabled by default. Custom Mode Key Allows you to manage the security key databases only if the system is in Custom Mode .The options are: Management 62 System setup

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
Option
Description
NOTE:
Disabling this option will block BIOS updates from services such as Microsoft Windows
Update and Linux Vendor Firmware Service (LVFS).
TPM 2.0 Security
Allows you to enable the Trusted Platform Module (TPM) during POST.
You can control whether the trusted platform module is visible to the operating system. The option is:
TPM on
This option is selected by default.
Clear
PPI Bypass for Disable Commands
PPI Bypass for Clear Command" in TPM 2.0 Security
.
Attestation Enable
. This option is selected by default.
PPI Bypass for Disable Commands
Key Storage Enable
. This option is selected by default.
SHA-256
. This option is selected by default.
CAUTION:
For the TPM upgrade/downgrade process, it is recommended to complete the process
in an AC power with AC adapter plugged into the computer. The upgrade/downgrade process
without the AC adapter plugged in might damage the computer or hard disk.
NOTE:
Disabling this option does not change any settings you have made to the TPM, nor does it
delete or change any information or keys you may have stored in the TPM. Changes to this setting
take effect immediately.
Absolute (R)
Allows you to activate or disable the optional Computrace Service from Absolute software. The options are:
Deactivate
Disable
Activate
NOTE:
The Activate and Disable options will permanently activate or disable the feature and no
further changes will be allowed
Default setting: Activate
Admin Setup
Lockout
Allows you to prevent users from entering the setup when an Administrator password is set.
Enable Admin Setup Lockout
This option is not selected by default.
Master Password
Lockout
Allows you to prevent users from entering the setup when an Master password is set. Hard disk passwords need
to be cleared before the setting can be changed.
Enable Master Password Lockout
This option is not selected by default.
SSM Security
Mitigation
Allows you to enable or disable additional UEFI SMM Security Mitigation protections. The OS can use the feature
to help protect the secure environment created by virtualization based security.
SSM Security Mitigation
This option is disabled by default.
Secure Boot
Option
Description
Secure Boot
Enable
This option enables or disables the
Secure Boot
feature.
Disabled
Enabled
Default setting: Enabled.
Expert Key
Management
Allows you to manipulate the security key databases only if the system is in Custom Mode. The
Enable Custom
Mode
option is disabled by default.
Custom Mode Key
Management
Allows you to manage the security key databases only if the system is in Custom Mode .The options are:
62
System setup