Table 4. Security menu items (continued)
Menu item
UEFI BIOS Update Option
Submenu item
Intel(R) TXT Feature
Physical Presence for
Provisioning
Physical Presence for
Clear
Flash BIOS Updating by
End-Users
Secure RollBack
Prevention
Selection
Comments
Note: This item is available when
Security Chip is set as Active.
• Disabled
Enable or disable the Intel Trusted
Execution Technology (TXT) feature.
• Enabled
Intel TXT is a hardware-based
security technology that establishes
a root of trust to protect information
from software-based attacks.
Note: The Intel (R) TXT Feature
item is only available on models that
support the Intel vPro™ technology.
• Disabled
This option enables or disables
confirmation of a user physical
• Enabled
presence when provisioning the
security chip.
If you select Enabled, a user
confirmation screen will be
displayed when provisioning the
security chip.
If you select Disabled, no user
confirmation screen will be
displayed when provisioning the
security chip.
• Disabled
This option enables or disables
confirmation of a user physical
• Enabled
presence when clearing the security
chip.
If you select Enabled, a user
confirmation screen will be
displayed when clearing the security
chip.
If you select Disabled, no user
confirmation screen will be
displayed when clearing the security
chip.
• Disabled
If you select Enabled, all users can
update the UEFI BIOS. If you select
• Enabled
Disabled, only the person who
knows the supervisor password can
update the UEFI BIOS.
• Disabled
If you select Disabled, you can flash
to an earlier version of the UEFI
• Enabled
BIOS.
If you select Enabled, you cannot
flash to an earlier version of the UEFI
BIOS.
Chapter 6
.
Advanced configuration
81