Computer Setup—Security (continued)
Clear Password Jumper
Select 'Honor' to allow or 'Ignore' to not allow the absence of the password jumper to clear the passwords
at boot up. Default is 'Honor'.
TPM Embedded Security
BIOS Sure Start
HP Secure Platform Management (SPM)
Requires at least one lower case character
TPM Specification Version
Displays the current TPM version.
Lets you set the Trusted Platform Module as available or hidden.
Select to enable the TPM's data store (default). Clear to disable the data store without affecting the
Select to clear the saved keys and data in the TPM's data store on the next boot. After rebooting this
field is cleared.
Any services using the TPM (for example, Windows' Bitlocker encryption service) will
lose functionality that depends on saved data.
Verify Boot Block on every boot. Default is disabled.
BIOS Data Recovery Policy. Default is Automatic.
Only select Manual in situations in which forensic analysis is to be performed before
HP Sure Start Recovery. When this policy is set to manual, HP Sure Start will not correct any issues
that are found until the manual recovery key sequence is entered by the local user. This can result in
a system that is unable to boot after inputting the manual recovery key sequence.
Sure Start BIOS Settings Protection. This setting requires setting the BIOS Administrator password.
Default is disabled.
Sure Start Secure Boot Keys Protection. Default is enabled.
Enhanced HP Firmware Runtime Intrusion Prevention and Detection. Enables monitoring of
firmware executing out of main memory while the operating system is running. Any anomalies
detected in firmware that are active while the operating system is running results in generation of a
Sure Start Security Event. Default is enabled.
Sure Start Security Event Policy. Controls HP Sure Start behavior upon identifying a critical security
event (any modification to firmware) during operating system runtime. When set to Log Event Only,
HP Sure Start logs all critical security events. When set to Log Event and Notify User, HP Sure Start
notifies the user that a critical event has occurred. When set to Log Event and Power Off System, HP
Sure Start powers off the system upon detecting a security event. Default is Log Event Only.
Sure Start Security Event Boot Notification. Default is Require Acknowledgment.
HP Sure Run Current State (Inactive/Active)
Deactivate HP Sure Run
SPM Current State (Not provisoned/Provisioned)
Computer Setup (F10) Utilities