Table of Contents
Advertisement
Table 69. System Security details
Option
CPU AES-NI
System Password
Setup Password
Password Status
TPM Information
Table 70. TPM 2.0 security information
Option
TPM Information
TPM Security
TPM Information
TPM Firmware
TPM Hierarcy
TPM
TPM PPI Bypass
Advanced
Provision
Settings
TPM PPI Bypass Clear
TPM2 Algorithm
Selection
Table 71. System Security details
Option
Intel(R) TXT
64
Pre-operating system management applications
Description
Improves the speed of applications by performing encryption and decryption by using
the Advanced Encryption Standard Instruction Set (AES-NI). This option is set to
Enabled by default.
Sets the system password. This option is set to Enabled by default and is read-only if
the password jumper is not installed in the system.
Sets the setup password. This option is read-only if the password jumper is not installed
in the system.
Locks the system password. This option is set to Unlocked by default.
Indicates the type of Trusted Platform Module, if present.
Description
NOTE:
The TPM menu is available only when the TPM module is installed.
Enables you to control the reporting mode of the TPM. When set to Off, the
presence of the TPM is not reported to the OS. When set to On, the presence of the
TPM is reported to the OS. The TPM Security option is set to Off by default.
When TPM 2.0 is installed, the TPM Security option is set to On or Off. This option
is set to Off by default.
Indicates the type of Trusted Platform Module, if present.
Indicates the firmware version of the TPM.
Enables, disables, or clears the storage and endorsement hierarchies. When set to
Enabled, the storage and endorsement hierarchies can be used.
When set to Disabled, the storage and endorsement hierarchies cannot be used.
When set to Clear, the storage and endorsement hierarchies are cleared of any
values, and then reset to Enabled.
When set to Enabled, allows the Operating System to bypass Physical Presence
Interface (PPI) prompts when issuing PPI Advanced Configuration and Power
interface (ACPI) provisioning operations. This option is set to Disabled by default.
When set to Enabled allows the Operating System to bypass Physical Presence
Interface (PPI) prompts when issuing PPI Advanced Configuration and Power
Interface (ACPI) clear operations. This option is set to Disabled by default
Allows the user to change the cryptographic algorithms used in the Trusted Platform
Module (TPM). The available options are dependent on the TPM firmware.
To enable TPM2 Algorithm Selection, Intel(R) TXT technology must be disabled.
The TPM2 Algorithm Selection option supports SHA1, SHA128, SHA256, SHA512 and
SM3 by detecting the TPM module. This option is set to SHA256 by default.
Description
Enables you to set the Intel Trusted Execution Technology (TXT) option. To enable
the Intel TXT option, virtualization technology and TPM Security must be enabled with
Pre-boot measurements. This option is set to Off by default. It is set On for Secure
Launch (Firmware Protection) support on Windows 2022.
Advertisement
Table of Contents
