Table 5. Security menu items (continued)
Menu item | Submenu item | Value | Comments | |
|
|
|
|
|
|
|
|
| able to work until they are |
|
|
|
| fingerprint software. |
|
|
|
|
|
Security Chip | Security Chip | • | Discrete TPM | If you select Discrete TPM, you can use a |
| Selection | • | Intel PPT | discrete TPM chip with TPM 1.2 mode. If you |
|
| select Intel PTT, you can use Intel Platform | ||
|
|
|
| |
|
|
|
| Trusted technology (PTT) with TPM 2.0 mode. |
|
|
|
| Note: |
|
|
|
| Intel PTT can be used with Windows 8 or later |
|
|
|
| operating system. |
|
|
|
|
|
| Security Chip | • | Active | If you select Active, the security chip is |
|
| • | Inactive | functional. If you select Inactive, the Security |
|
| Chip option is visible, but the security chip | ||
|
| • | Disabled | |
|
| is not functional. If you select Disabled, the | ||
|
|
|
| Security Chip option is hidden and the security |
|
|
|
| chip is not functional. |
|
|
|
|
|
| Security Reporting |
|
| This option is available when Security Chip |
| Options |
|
| is active. It is used to enable or disable the |
|
|
|
| following Security Reporting Options: |
|
|
|
| • BIOS ROM String Reporting (Windows 7) or |
|
|
|
| UEFI ROM String Reporting (Windows 8): |
|
|
|
| BIOS text string |
|
|
|
| • CMOS Reporting: CMOS data |
|
|
|
| • NVRAM Reporting: Security data stored in |
|
|
|
| the Asset ID |
|
|
|
| • SMBIOS Reporting: SMBIOS data |
|
|
|
|
|
| Clear Security Chip | • | Enter | Clear the encryption key. |
|
|
|
| Note: This item is displayed only if you have |
|
|
|
| selected Active for the Security Chip option. |
|
|
|
|
|
| Intel TXT Feature | • | Disabled | Enable or disable the Intel Trusted Execution |
|
| • | Enabled | Technology. |
|
|
| ||
|
|
|
| Note: This item is displayed only if you have |
|
|
|
| selected Active for the Security Chip option. |
|
|
|
|
|
| Physical Presence | • | Disabled | Enable or disable the confirmation message |
| for Provisioning | • | Enabled | when you change the settings of the security |
|
| chip. | ||
|
|
|
| |
|
|
|
|
|
| Physical Presence | • | Disabled | Enable or disable the confirmation message |
| for Clear | • | Enabled | when you clear the security chip. |
|
|
| ||
|
|
|
|
|
UEFI BIOS Update | Flash BIOS Updating | • | Disabled | If you select Enabled, all users can update the |
Option | by | • | Enabled | UEFI BIOS. If you select Disabled, only the |
|
| person who knows the supervisor password can | ||
|
|
|
| |
|
|
|
| update the UEFI BIOS. |
|
|
|
|
|
| Secure RollBack | • | Disabled | If you select Disabled, you can flash the older |
| Prevention | • | Enabled | version UEFI BIOS. |
|
|
| ||
|
|
|
|
|
Chapter 8. Advanced configuration 109
