Enabling the embedded security chip | HP dc73 Blade Client guide

Setup procedures

CAUTION: To reduce security risk, it is highly recommended that your IT administrator immediately initialize the embedded security chip. Failure to initialize the embedded security chip could result in an unauthorized user, a computer worm, or a virus taking ownership of the computer and gaining control over the owner tasks, such as handling the emergency recovery archive, and configuring user access settings.

Follow the steps in the following 2 sections to enable and initialize the embedded security chip.

Enabling the embedded security chip

The embedded security chip must be enabled in the Computer Setup utility. This procedure cannot be performed in BIOS Configuration for HP ProtectTools.

To enable the embedded security chip:

1.Open Computer Setup by turning on or restarting the computer, and then pressing F10 while the “F10 = ROM Based Setup” message is displayed in the lower-left corner of the screen.

2.If you have not set an administrator password, use the arrow keys to select Security > Setup password, and then press enter.

3.Type your password in the New password and Verify new password boxes, and then press F10.

4.In the Security menu, use the arrow keys to select TPM Embedded Security, and then press enter.

5.Under Embedded Security, if the device is hidden, select Available.

6.Select Embedded security device state and change to Enable.

7.Press F10 to accept the changes to the Embedded Security configuration.

8.To save your preferences and exit Computer Setup, use the arrow keys to select File > Save Changes and Exit. Then follow the on-screen instructions.

28 Chapter 3 Embedded Security for HP ProtectTools

ENWW

Image 34

HP dc73 Blade Client manual Enabling the embedded security chip, Select Embedded security device state and change to Enable

Contents

ProtectTools First Edition July Document Part Number Table of contents Embedded Security for HP ProtectTools Java Card Security for HP ProtectTools Troubleshooting Bios Configuration for HP ProtectToolsDrive Encryption for HP ProtectTools Enww Introduction to security HP ProtectTools features Module Key features Accessing HP ProtectTools Security Achieving key security objectives Restricting access to sensitive dataProtecting against targeted theft Creating strong password policies Additional security elements Managing HP ProtectTools passwordsAssigning security roles Java Card PIN also protects access to Creating a secure password HP ProtectTools Backup and RestoreBacking up credentials and settings Restoring credentials Configuring settings Credential Manager for HP ProtectTools Using the Credential Manager Logon Wizard Setup proceduresLogging on to Credential Manger Logging on for the first time Registering credentialsRegistering fingerprints Registering a Java Card, USB eToken, or virtual token Setting up the fingerprint readerUsing your registered fingerprint to log on to Windows Registering a USB eToken Creating a virtual token Changing the Windows logon passwordGeneral tasks Changing a token PIN Managing identity Clearing an identity from the system Logging on to Windows with Credential Manager Using Windows LogonLocking the computer Adding an account Removing an account Using Single Sign OnUsing automatic registration Registering a new application Modifying application properties Using manual drag and drop registrationManaging applications and credentials Removing an application from Single Sign On Importing an application Using Application ProtectionModifying credentials Changing restriction settings for a protected application Restricting access to an applicationRemoving protection from an application Enww Advanced tasks administrator only Specifying how users and administrators log on Configuring custom authentication requirements Configuring credential properties Configuring Credential Manager settings Select Start All Programs HP ProtectTools Security Manager Embedded Security for HP ProtectTools Select Embedded security device state and change to Enable Enabling the embedded security chip Initializing the embedded security chip Setting up the basic user account Encrypting files and folders Using the Personal Secure DriveSending and receiving encrypted e-mail Changing the Basic User Key password Advanced tasks Creating a backup fileRestoring certification data from the backup file Backing up and restoring Enabling Embedded Security after permanent disable Changing the owner passwordResetting a user password Enabling and disabling Embedded Security Migrating keys with the Migration Wizard Java Card Security for HP ProtectTools Changing a Java Card PIN Selecting the card reader Advanced tasks administrators only Assigning a Java Card PIN Setting power-on authentication Assigning a name to a Java Card To enable Java Card power-on authentication Disabling Java Card power-on authentication Creating a user Java Card Bios Configuration for HP ProtectTools Managing boot options Enabling and disabling system configuration options Enww Managing HP ProtectTools add-on module settings Under Smart Card Security, click Enable Click Apply, and then click OK in the HP ProtectTools window Enabling and disabling DriveLock hard drive protection Using DriveLockDriveLock Applications Changing the power-on password Managing Computer Setup passwordsSetting the power-on password Setting the setup password Setting password options Changing the setup passwordEnabling and disabling stringent security Enww Drive Encryption for HP ProtectTools Encryption management User management Recovery Right pane, click Click here to backup your keys Credential Manager for ProtectTools TroubleshootingSecurity Change password option, but, since Virtual Token during Connect Click Advanced SettingsClick Service & Applications Click Java Cards and Tokens Reader to log on to Credential Manager Select Enable Save changes and exit F10 = ROM Based Setup message is displayedIt to Embedded Security Device-Enable Security Restore Identity Embedded Security for ProtectTools Select File Save Changes and Exit Being used by another Process cannot accessFile because it is Process Out with access denied Selects SPSystemBackup .xml Clicks Restore under BackupError has been detected Selected Backup Archive does Enww Miscellaneous Click All Programs Click HP ProtectTools Security Manager Power-on Computer Setup, the Power-on Authentication support Glossary Enww Access Index Enww Enww