HP Pro Tablet 610 G1 manual 49

Hardware encryption

◦Encrypted

◦Not encrypted (for additional drives)

Using Enhanced Security with TPM (select models only)

If the Trusted Platform Module (TPM) is activated and the Drive Encryption Enhanced Security with TPM functionality is selected, the Drive Encryption password is protected by the TPM security chip. If the hard drive is removed and installed in another computer, access to the drive is denied.

CAUTION: TPM ownership cannot be shared with Windows TPM.msc.

NOTE: Because the password is protected by the TPM security chip, if the hard drive is moved to another computer, data cannot be accessed unless the TPM settings are migrated to that computer.

NOTE: The TPM option must be enabled in BIOS Setup.

Encrypting or decrypting individual drive partitions (software encryption only)

Administrators can use the Drive Encryption Settings page to encrypt one or more hard drive partition(s) on the computer or decrypt any drive partition(s) that have already been encrypted.

1.Launch HP ProtectTools Administrative Console. For more information, see Opening HP ProtectTools Administrative Console on page 15.

2.In the left panel, click the + icon to the left of Drive Encryption to display the available options.

3.Click Settings.

4.Under Drive Status, select or clear the check box next to each hard drive you want to encrypt or decrypt, and then click Apply.

NOTE: When a partition is being encrypted or decrypted, a progress bar displays the percentage of partition encrypted and the time remaining to complete the process.

NOTE: Dynamic partitions are not supported. If a partition is displayed as available, but it cannot be encrypted when selected, the partition is dynamic. A dynamic partition results from shrinking a partition to create a new partition within Disk Management.

A warning is displayed if a partition will be converted to a dynamic partition.

Backup and recovery (administrator task)

When Drive Encryption is activated, administrators can use the Encryption Key Backup page to back up encryption keys to removable media and to perform a recovery.

Backing up encryption keys

Administrators can back up the encryption key for an encrypted drive on a removable storage device.

CAUTION: Be sure to keep the storage device containing the backup key in a safe place, because if you forget your password, lose your smart card, or do not have a finger registered, this device provides your only access to the computer. The storage place should also be secure, because the storage device allows access to Windows.

Advanced tasks 43