Home » Dell Manuals » Servers » Dell PowerEdge HS5620 » Manual Viewer

Dell PowerEdge HS5620 PowerEdge HS5620 Installation and Service Manual - Page 61

Table 62. System Security details continued, User Defined Delay 120s

View all Dell PowerEdge HS5620 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 61 highlights

Table 62. System Security details (continued) Option Description SGX LE Public Key Hash3: Sets the bytes from 24-31 for SGX Launch Enclave Public Key Hash. Enable/Disable SGX Auto MP Registration Agent Enables are disables the SGX Auto MP Registration. The MP registration agent is responsible to register the platform. SGX Factory Reset Enables you to reset the SGX option to factory settings. This option is set to Off by default. Power Button Enables or disables the power button on the front of the system. This option is set to EnabledDisabled by default. AC Power Recovery Sets how the system behaves after AC power is restored to the system. This option is set to Last by default. NOTE: The host system will not power on up until iDRAC Root of Trust (RoT) is completed, host power on will be delayed by minimum 90 seconds after the AC applied. AC Power Recovery Delay Sets the time delay for the system to power up after AC power is restored to the system. This option is set to Immediate by default. When this option is set to Immediate, there is no delay for power up. When this option is set to Random, the system creates a random delay for power up. When this option is set to User Defined, the system delay time is manually to power up. User Defined Delay (120s to 600s) Sets the User Defined Delay option when the User Defined option for AC Power Recovery Delay is selected. The actual AC recovery time needs to add iDRAC root of trust time (around 50 seconds). UEFI Variable Access Provides varying degrees of securing UEFI variables. When set to Standard (the default), UEFI variables are accessible in the operating system per the UEFI specification. When set to Controlled, selected UEFI variables are protected in the environment and new UEFI boot entries are forced to be at the end of the current boot order. In-Band Manageability Interface When set to Disabled , this setting hides the Management Engine's (ME), HECI devices, and the system's IPMI devices from the operating system. This prevents the operating system from changing the ME power capping settings, and blocks access to all inband management tools. All management should be managed through out-of-band. This option is set to Enabled by default. NOTE: BIOS update requires HECI devices to be operational and DUP updates require IPMI interface to be operational. This setting needs to be set to Enabled to avoid updating errors. SMM Security Mitigation Secure Boot Secure Boot Policy Secure Boot Mode Enables or disables the UEFI SMM security migration protections. It is enabled for Windows 2022 support. Enables Secure Boot, where the BIOS authenticates each pre-boot image by using the certificates in the Secure Boot Policy. Secure Boot is set to Disabled by default. When Secure Boot policy is set to Standard, the BIOS uses the system manufacturer's key and certificates to authenticate pre-boot images. When Secure Boot policy is set to Custom, the BIOS uses the user-defined key and certificates. Secure Boot policy is set to Standard by default. Configures how the BIOS uses the Secure Boot Policy Objects (PK, KEK, db, dbx). If the current mode is set to Deployed Mode, the available options are User Mode and Deployed Mode. If the current mode is set to User Mode, the available options are User Mode, Audit Mode, and Deployed Mode Below are the details of different boot modes available in the Secure Boot Mode option. User Mode In User Mode, PK must be installed, and BIOS performs signature verification on programmatic attempts to update Pre-operating system management applications 61

Section	Page
Dell PowerEdge HS5620 Installation and Service Manual	1
Contents	3
About this document	8
Dell PowerEdge HS5620 system overview	9
Front view of the system	9
Left control panel view	12
Right control panel view	13
Rear view of the system	14
Inside the system	16
Locating the Express Service Code and Service Tag	17
System information label	18
Rail sizing and rack compatibility matrix	21
Technical specifications	23
Chassis dimensions	24
System weight	24
Processor specifications	25
PSU specifications	25
Supported operating systems	26
Cooling fan specifications	26
System battery specifications	28
Expansion card riser specifications	28
Memory specifications	29
Storage controller specifications	29
Drives	30
Ports and connectors specifications	30
USB ports specifications	30
Serial connector specifications	31
NIC port specifications	31
VGA ports specifications	31
Video specifications	31
Environmental specifications	31
Thermal restriction matrix	33
Thermal air restrictions	38
Initial system setup and configuration	39
Setting up the system	39
iDRAC configuration	39
Options to set up iDRAC IP address	39
Options to log in to iDRAC	40
Resources to install operating system	41
Options to download drivers and firmware	41
Options to download and install OS drivers	42
Downloading drivers and firmware	42
Pre-operating system management applications	43
System Setup	43
System BIOS	44
System Information	44
Memory Settings	44
Processor Settings	45
SATA Settings	49
NVMe Settings	49
Boot Settings	50
Choosing system boot mode	51
Changing boot order	51
Network Settings	51
Integrated Devices	55
Serial Communication	57
System Profile Settings	58
System Security	59
Creating a system and setup password	62
Using your system password to secure your system	63
Deleting or changing system and setup password	63
Operating with setup password enabled	64
Redundant OS Control	64
Miscellaneous Settings	64
iDRAC Settings	65
Device Settings	65
Dell Lifecycle Controller	65
Embedded system management	65
Boot Manager	65
PXE boot	66
Minimum to POST and system management configuration validation	67
Minimum configuration to POST	67
Configuration validation	67
Error messages	68
Installing and removing system components	69
Safety instructions	69
Before working inside your system	69
After working inside your system	70
Recommended tools	70
Optional front bezel	70
Removing the front bezel	70
Installing the front bezel	71
System cover	72
Removing the system cover	72
Installing the system cover	73
Drive backplane cover	74
Removing the drive backplane cover	74
Installing the drive backplane cover	75
Air shroud	77
Removing the air shroud	77
Installing the air shroud	77
Cooling fans	78
Removing a cooling fan	78
Installing a cooling fan	79
Removing the cooling fan cage	80
Installing the cooling fan cage	81
Removing the cooling fan cage board	82
Installing the cooling fan cage board	83
Side wall brackets	84
Removing the side wall bracket	84
Installing the side wall bracket	85
Intrusion switch	86
Removing the intrusion switch module	86
Installing the intrusion switch	87
Optional serial COM port	88
Removing the optional serial COM port	88
Installing the optional serial COM port	89
Drives	90
Removing a drive blank	90
Installing a drive blank	91
Removing the drive carrier	91
Installing the drive carrier	92
Removing the drive from the drive carrier	93
Installing the drive into the drive carrier	94
Drive backplane	95
Drive backplane	95
Removing the drive backplane	97
Installing the drive backplane	98
Cable routing	99
System memory	108
System memory guidelines	108
General memory module installation guidelines	109
Removing a memory module	110
Installing a memory module	111
Processor and heat sink module	112
Removing the processor and heat sink module	112
Removing the processor	114
Installing the processor	115
Installing the processor and heat sink module	118
Expansion cards and expansion card risers	120
Expansion card installation guidelines	121
Removing the expansion card risers	127
Installing the expansion card risers	128
Removing expansion card from the expansion card riser	129
Installing an expansion card into the expansion card riser	131
M.2 SSD module	132
Removing the BOSS-N1 card	132
Installing the BOSS-N1 controller card	135
PERC	138
Removing the adapter PERC	138
Installing the adapter PERC	139
Removing the rear mounting front PERC module	140
Installing the rear mounting front PERC module	141
Removing the front mounting front PERC module	142
Installing the front mounting front PERC module	143
Rear drive module	144
Removing the rear drive module	144
Installing the rear drive module	145
Optional OCP card	146
Removing the OCP shroud	146
Installing the OCP shroud	147
Removing the OCP card	148
Installing the OCP card	149
System battery	150
Replacing the system battery	150
Optional internal USB card	152
Removing the internal USB key	152
Installing the internal USB key	153
Power supply unit	153
Hot spare feature	153
Removing a power supply unit blank	154
Installing a power supply unit blank	154
Removing a power supply unit	155
Installing a power supply unit	156
Power distribution board	157
Removing the power interposer board	157
Installing the power interposer board	157
System board	158
Removing the system board	158
Installing the system board	159
Restoring the system using Easy Restore	161
Manually update the Service Tag	161
Trusted Platform Module	161
Upgrading the Trusted Platform Module	161
Removing the TPM	161
Installing the TPM	162
Initializing TPM for users	162
Initializing the TPM 2.0 for users	163
Control panel	163
Removing the left control panel	163
Installing the left control panel	164
Removing the right control panel	165
Installing the right control panel	165
Upgrade Kits	167
Jumpers and connectors	168
System board jumpers and connectors	168
System board jumper settings	170
Disabling a forgotten password	170
System diagnostics and indicator codes	172
Status LED indicators	172
System health and system ID indicator codes	174
iDRAC Quick Sync 2 indicator codes	175
iDRAC Direct LED indicator codes	175
LCD panel	176
Viewing Home screen	177
Setup menu	177
View menu	177
NIC indicator codes	178
Power supply unit indicator codes	178
Drive indicator codes	180
Using system diagnostics	181
Dell Embedded System Diagnostics	181
Running the Embedded System Diagnostics from Boot Manager	181
Running the Embedded System Diagnostics from the Dell Lifecycle Controller	181
System diagnostic controls	182
Getting help	183
Recycling or End-of-Life service information	183
Contacting Dell Technologies	183
Accessing system information by using QRL	183
Quick Resource Locator for PowerEdge HS5620 system	184
Receiving automated support with Secure Connect Gateway (SCG)	184

Match case Limit results 1 per page

Table 62. System Security details (continued)

Option

Description

SGX LE Public Key Hash3

: Sets the bytes from 24-31 for SGX Launch Enclave Public

Key Hash.

Enable/Disable SGX Auto MP

Registration Agent

Enables are disables the SGX Auto MP Registration. The MP registration agent is

responsible to register the platform.

SGX Factory Reset

Enables you to reset the SGX option to factory settings. This option is set to

Off

default.

Power Button

Enables or disables the power button on the front of the system. This option is set to

EnabledDisabled

by default.

AC Power Recovery

Sets how the system behaves after AC power is restored to the system. This option is

set to

Last

by default.

NOTE:

The host system will not power on up until iDRAC Root of Trust (RoT) is

completed, host power on will be delayed by minimum 90 seconds after the AC

applied.

AC Power Recovery Delay

Sets the time delay for the system to power up after AC power is restored to

the system. This option is set to

Immediate

by default. When this option is set to

Immediate

, there is no delay for power up. When this option is set to

Random

, the

system creates a random delay for power up. When this option is set to

User Defined

the system delay time is manually to power up.

User Defined Delay (120s to

600s)

Sets the

User Defined Delay

option when the

User Defined

option for

AC Power

Recovery Delay

is selected. The actual AC recovery time needs to add iDRAC root of

trust time (around 50 seconds).

UEFI Variable Access

Provides varying degrees of securing UEFI variables. When set to

Standard

(the

default), UEFI variables are accessible in the operating system per the UEFI

specification. When set to

Controlled

, selected UEFI variables are protected in the

environment and new UEFI boot entries are forced to be at the end of the current boot

order.

In-Band Manageability Interface

When set to

Disabled

, this setting hides the Management Engine's (ME), HECI devices,

and the system's IPMI devices from the operating system. This prevents the operating

system from changing the ME power capping settings, and blocks access to all in-

band management tools. All management should be managed through out-of-band. This

option is set to

Enabled

by default.

NOTE:

BIOS update requires HECI devices to be operational and DUP updates

require IPMI interface to be operational. This setting needs to be set to Enabled to

avoid updating errors.

SMM Security Mitigation

Enables or disables the UEFI SMM security migration protections. It is enabled for

Windows 2022 support.

Secure Boot

Enables Secure Boot, where the BIOS authenticates each pre-boot image by using the

certificates in the Secure Boot Policy. Secure Boot is set to

Disabled

by default.

Secure Boot Policy

When Secure Boot policy is set to

Standard

, the BIOS uses the system manufacturer’s

key and certificates to authenticate pre-boot images. When Secure Boot policy is set to

Custom

, the BIOS uses the user-defined key and certificates. Secure Boot policy is set

Standard

by default.

Secure Boot Mode

Configures how the BIOS uses the Secure Boot Policy Objects (PK, KEK, db, dbx).

If the current mode is set to

Deployed Mode

, the available options are

User Mode

and

Deployed Mode

. If the current mode is set to

User Mode

, the available options are

User Mode

Audit Mode

, and

Deployed Mode

Below are the details of different boot modes available in the

Secure Boot Mode

option.

User Mode

, PK must be installed, and BIOS performs

signature verification on programmatic attempts to update

Pre-operating system management applications