HP 8300 manual BitLocker, Boot order, Boot Order for notebooks, Usb

Page 14

Technical white paper UEFI Secure Boot on HP business notebooks, desktops, and workstations

BitLocker

Systems which support TPM and wired LAN networking must support the UEFI_DHCP4_protocol, the

UEFI_DHCP4_SERVICE_BINDING_PROTOCOL, the UEFI_DHCP6_protocol, and the

UEFI_DHCP6_SERVICE_BINDING_PROTOCOL for wired LAN as defined in UEFI 2.3.1.

At pre-boot, BitLocker must be able to discover its Network Unlock provider on a Windows Deployment Server (WDS) via DHCP, and unlock the OS volume after retrieving information from WDS.

Boot order

In UEFI design, the Boot Order variable contains an array of UINT16’s that makes up an ordered list of the BootXXXX variables (each defining one boot option). The first element in the array is the value for the first logical boot option, the second element is the value for the second logical boot option, etc. The Boot Order list is used by the firmware’s boot manager as the default boot order. Both the OS and the BIOS can add/remove Boot numbers. This is different than the boot options provided in the legacy F10 boot order menu.

Boot Order for notebooks

On notebooks, HP suggests that the user create two separate Boot Orders in the BIOS:

The legacy Boot Order, as it exists when Legacy Support is enabled.

A UEFI Boot Order list when Legacy Support is disabled.

For the UEFI F10 Static Boot Order, the BIOS assigns certain Boot numbers for the fixed devices in the system. For example, Boot 0000 can be OS Boot Manager for a hard drive, Boot0001 can be PXE IPV4, and Boot0002 can be for a built-in DVD. Certain HP-supported UEFI apps should also be listed, such as HP UEFI diagnostics. Windows 8 will add Boot numbers for “Windows Boot Manager,” for the hard drive, and “Windows to go” for the USB disk.

When Legacy Support is disabled, the BIOS is in native UEFI mode and POST time is critical. If the generic USB device or USB hard drive is not listed first in the Boot Order and the next boot is not set to “USB Hard Drive“ or “generic USB device” by the OS, the BIOS will not enumerate USB. Thus any removable USB devices attached to the system will not be enumerated and Boot Order will not show the detailed USB device information. The only entry will be the generic USB device, and there be no external USB optical drive or external USB disk devices in the F10 Boot Order.

When no button is pressed during POST, the BIOS will pass this static Boot Order list to the OS. In turn, the OS will display it in its Advanced Options.

Figure 9. F10 Boot Order when Legacy Support is enabled and disabled (notebooks)

F10 Boot Order when Legacy Support Is enabled. Both UEFI and legacy Boot options are shown. Notebook Ethernet IPV4 and IPV6 boot options are disabled by default due to long delays.

[]

Legacy Support

 

 

[ ]

Secure Boot

Boot Options

[]

Legacy PXE Internal NIC boot

 

 

[ ]

UEFI PXE IPV4 NIC boot

[ ]

UEFI PXE IPV6 NIC boot

UEFI Boot Order

OS Boot Manager

USB Hard Drive

Notebook Ethernet IPV4

Notebook Ethernet IPV6

Notebook Upgrade Bay

eSata Drive

SD Card

HP Hypervisor

Generic USB Device

Customized Boot

Delete Add

F10 Boot Order when Legacy Support is disabled. All legacy boot order items are dynamically removed. Notebook Ethernet IPV4 and IPV6 boot options are enabled by default.

[ ]

Legacy support

[]

Secure Boot

 

Boot Options

[]

UEFI PXE IPV4 NIC boot

[]

UEFI PXE IPV6 NIC boot

[]

USB

 

 

UEFI Boot Order

OS Boot Manager

USB Hard Drive

Notebook Ethernet IPV4

Notebook Ethernet IPV6

Notebook Upgrade Bay

eSata Drive

SD Card

HP Hypervisor

Generic USB Device

Customized Boot

14

Image 14
Contents Table of contents Page Supported models Uefi pre-boot guidelinesHptools for HP Uefi and pre-boot applications HP business notebooks HP business desktops HP workstationsVolume name HP System Diagnostics during startupBios recovery Uefi and custom imagingDirectories and descriptions Recovery partition HPTools partition Partition ESPWinRE partition C ESP C OS partitionC Recovery partition D Disk LayoutsNon-HP-signed Uefi applications How Bios launches Uefi applicationsFor HP-signed Uefi applications Additional F10 Policies for Pre-boot Environment Pre-boot security requirements notebooks onlySigned pre-boot applications Firmware policies Secure Boot overviewSecure Boot = Disabled Firmware policies for notebooksFirmware boot policy for desktops and workstations Boot Mode/ Secure Boot Disable EnableSecure Boot Key management for notebooks HP Platform Key Management for notebooksSecure Boot Key management for desktops and workstations Key Ownership HP Keys Fast Boot EnabledTPM and measured boot If Secure Boot verification failsBios Signing Key Physical presencePost time for notebooks Windows 8 Hybrid Boot and flashTPM auto-provisioning Post time for desktops and workstationsBitLocker Boot orderBoot Order for notebooks USBLegacy Boot Order USB Floppy USB CD-ROMNetwork Controller Boot order for desktops and workstationsSATA2 Microsoft Digital Marker Key injection Bios functionalityHP Bios configuration Repset functionality Physical Presence Check F10 Restore Default BehaviorComputrace Utilities System ConfigurationDevice Configurations Built-In Device Options Port OptionsPage General Uefi requirements PCR boot measurements for notebook productsAppendix PCRFor more information Resource description Web address
Related manuals
Manual 4 pages 56.97 Kb Manual 4 pages 39.59 Kb Manual 4 pages 4.61 Kb Manual 9 pages 43 Kb Manual 4 pages 30.57 Kb Manual 208 pages 14.06 Kb

8300 specifications

The HP 8300 is a versatile and efficient desktop computer designed for business environments and power users. As part of the HP Elite series, the 8300 is tailored to deliver robust performance, security, and manageability.

One of the key features of the HP 8300 is its selection of Intel processors. Users can opt for third-generation Intel Core i3, i5, or i7 CPUs, providing a range of performance levels suitable for various workloads, from basic office tasks to more intensive applications. This adaptability makes the 8300 a suitable choice for organizations needing reliable computing power.

The system supports up to 32GB of DDR3 RAM, allowing for smooth multitasking and improved efficiency in handling resource-heavy applications. The flexibility in memory options ensures that businesses can configure the machine to meet their specific needs.

For storage, the HP 8300 offers various choices including traditional Hard Disk Drives (HDD) and Solid State Drives (SSD), significantly enhancing data access speeds and system responsiveness. With multiple configuration options, users can select from up to 1TB of storage capacity, providing ample room for files and applications.

Connectivity is also a strong point for the HP 8300. The desktop is equipped with multiple USB 3.0 ports, facilitating quick file transfers and easy peripheral connectivity. Additional ports, including USB 2.0, VGA, DP, and serial ports, ensure compatibility with a wide array of devices and legacy equipment.

Security technologies are integrated within the HP 8300 framework, including features like BIOS protection, HP Client Security, and optional fingerprint readers. These security measures help safeguard sensitive data and provide an additional layer of protection against unauthorized access.

The HP 8300 also supports various operating systems, including Windows 10 Pro, ensuring organizations can deploy the desktop within their existing IT ecosystem. Furthermore, the machine’s compatibility with HP tools for remote management enhances administrators' ability to oversee multiple devices efficiently.

In summary, the HP 8300 embodies a blend of powerful hardware, extensive configuration options, robust security features, and effective management capabilities, making it a compelling desktop solution for businesses aiming for productivity and reliability. With its comprehensive feature set, it stands out as an exceptional choice for both individual and organizational computing needs.