HP 8300 manual Secure Boot Key management for desktops and workstations

Page 11

Technical white paper UEFI Secure Boot on HP business notebooks, desktops, and workstations

Figure 7. BIOS Setup User Mode selection for notebooks.

Note

If the user tries to import the HP PK again when the selection is the Customer Keys, the BIOS will reject the PK.

Secure Boot Key management for desktops and workstations

Figure 8. HP Platform Key Management for desktops

Secure Boot Configuration

 

 

Legacy Support

 

Disabled

Secure Boot

 

Enabled

▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬

Key Management

 

 

Clear Secure Boot Keys

Don’t Clear

Key Ownership

 

HP Keys

▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬

Fast Boot

Enabled

The factory-default HP BIOS sets Key Ownership to HP Keys. This means the HP platform key (PK), Microsoft key exchange key (KEK), Microsoft database (db), and a blacklist database (dbx) are populated. When Secure Boot is disabled, the keys currently enrolled in the system are preserved. If a custom PK, KEK, db, and dbx are desired, the user must change Key Ownership to Custom Keys. Once confirmed, this change will automatically disable Secure Boot and clear the PK, KEK, db, and dbx. The user may then import custom keys and re-enable Secure Boot.

Note

If the user tries to import the HP PK when Key Ownership is Custom Keys, the BIOS will reject the PK.

11

Image 11
Contents Table of contents Page HP business notebooks HP business desktops HP workstations Uefi pre-boot guidelinesHptools for HP Uefi and pre-boot applications Supported modelsUefi and custom imaging HP System Diagnostics during startupBios recovery Volume nameDisk Layouts Recovery partition HPTools partition Partition ESPWinRE partition C ESP C OS partitionC Recovery partition D Directories and descriptionsNon-HP-signed Uefi applications How Bios launches Uefi applicationsFor HP-signed Uefi applications Additional F10 Policies for Pre-boot Environment Pre-boot security requirements notebooks onlySigned pre-boot applications Firmware policies for notebooks Secure Boot overviewSecure Boot = Disabled Firmware policiesBoot Mode/ Secure Boot Disable Enable Firmware boot policy for desktops and workstationsHP Platform Key Management for notebooks Secure Boot Key management for notebooksKey Ownership HP Keys Fast Boot Enabled Secure Boot Key management for desktops and workstationsPhysical presence If Secure Boot verification failsBios Signing Key TPM and measured bootPost time for desktops and workstations Windows 8 Hybrid Boot and flashTPM auto-provisioning Post time for notebooksUSB Boot orderBoot Order for notebooks BitLockerUSB CD-ROM Legacy Boot Order USB FloppyNetwork Controller Boot order for desktops and workstationsSATA2 Microsoft Digital Marker Key injection Bios functionalityHP Bios configuration Repset functionality Physical Presence Check F10 Restore Default BehaviorComputrace Utilities System ConfigurationDevice Configurations Port Options Built-In Device OptionsPage PCR PCR boot measurements for notebook productsAppendix General Uefi requirementsResource description Web address For more information
Related manuals
Manual 4 pages 56.97 Kb Manual 4 pages 39.59 Kb Manual 4 pages 4.61 Kb Manual 9 pages 43 Kb Manual 4 pages 30.57 Kb Manual 208 pages 14.06 Kb

8300 specifications

The HP 8300 is a versatile and efficient desktop computer designed for business environments and power users. As part of the HP Elite series, the 8300 is tailored to deliver robust performance, security, and manageability.

One of the key features of the HP 8300 is its selection of Intel processors. Users can opt for third-generation Intel Core i3, i5, or i7 CPUs, providing a range of performance levels suitable for various workloads, from basic office tasks to more intensive applications. This adaptability makes the 8300 a suitable choice for organizations needing reliable computing power.

The system supports up to 32GB of DDR3 RAM, allowing for smooth multitasking and improved efficiency in handling resource-heavy applications. The flexibility in memory options ensures that businesses can configure the machine to meet their specific needs.

For storage, the HP 8300 offers various choices including traditional Hard Disk Drives (HDD) and Solid State Drives (SSD), significantly enhancing data access speeds and system responsiveness. With multiple configuration options, users can select from up to 1TB of storage capacity, providing ample room for files and applications.

Connectivity is also a strong point for the HP 8300. The desktop is equipped with multiple USB 3.0 ports, facilitating quick file transfers and easy peripheral connectivity. Additional ports, including USB 2.0, VGA, DP, and serial ports, ensure compatibility with a wide array of devices and legacy equipment.

Security technologies are integrated within the HP 8300 framework, including features like BIOS protection, HP Client Security, and optional fingerprint readers. These security measures help safeguard sensitive data and provide an additional layer of protection against unauthorized access.

The HP 8300 also supports various operating systems, including Windows 10 Pro, ensuring organizations can deploy the desktop within their existing IT ecosystem. Furthermore, the machine’s compatibility with HP tools for remote management enhances administrators' ability to oversee multiple devices efficiently.

In summary, the HP 8300 embodies a blend of powerful hardware, extensive configuration options, robust security features, and effective management capabilities, making it a compelling desktop solution for businesses aiming for productivity and reliability. With its comprehensive feature set, it stands out as an exceptional choice for both individual and organizational computing needs.