Table of Contents
Advertisement
Option
Description
Master Password
The option Enable Master Password Lockout is not selected by default.
Lockout
SIMM Security
Allows you to enable or disable the additional UEFI SIMM Security Mitigation protections.
Mitigation
Default Setting: SIMM Security Mitigation is not selected.
Secure Boot screen options
Option
Description
Secure Boot
This option enables or disables the Secure Boot feature.
Enable
Default setting: Not selected
Secure Boot Mode •
•
Expert Key
Allows you to manipulate the security key databases only if the system is in Custom Mode. The Enable Custom
Management
Mode option is disabled by default. The options are:
•
•
•
•
If you enable the Custom Mode, the relevant options for PK, KEK, db, and dbx appear. The options are:
•
•
•
•
•
•
Intel Software Guard Extensions screen options
Option
Description
Intel SGX Enable
This field specifies you to provide a secured environment for running code/storing sensitive information in the
context of the main OS. The options are:
•
•
•
Enclave Memory
This option sets SGX Enclave Reserve Memory Size. The options are:
Size
•
•
•
Deployed Mode (default)
Audit Mode
PK (default)
KEK
db
dbx
Save to File—Saves the key to a user-selected file.
Replace from File—Replaces the current key with a key from a user-selected file.
Append from File—Adds a key to the current database from a user-selected file
Delete—Deletes the selected key
Reset All Keys—Resets to default setting
Delete All Keys—Deletes all the keys
NOTE:
If you disable the Custom Mode, all the changes made are erased and the keys restore to
default settings.
Disabled
Enabled
Software Controlled (default)
32 MB
64 MB
128 MB
System setup
21
Hide quick links:
Advertisement
Table of Contents
