Option
Description
UEFI Capsule
Firmware
Updates
Allows yout to control whether this system allows BIOS updates via UEFI capsule update packages.
●
Enable UEFI Capsule Firmware Updates (enabled by default)
TPM 2.0 Security
Allows you to enable the Trusted Platform Module (TPM) during POST. The options are:
●
TPM On (enabled by default)
●
Clear
●
PPI Bypass for Enabled Commands(enabled by default)
●
Attestation Enable (enabled by default)
●
Key Storage Enable (enabled by default)
●
PPI Bypass for Disabled Commands
●
SHA-256 (enabled by default)
●
Disabled
●
Enabled
NOTE:
To upgrade or downgrade TPM1.2/2.0, download the TPM wrapper tool (software).
Computrace
Allows you to activate or disable the optional Computrace software The options are:
●
Deactivate
●
Disable
●
Activate
NOTE:
The Activate and Disable options will permanently activate or disable the feature and no
further changes will be allowed
Default setting: Deactivate
CPU XD Support
Allows you to enable the Execute Disable mode of the processor.
Enable CPU XD Support (default)
OROM Keyboard
Access
Allows you to set an option to enter the Option ROM Configuration screens using hotkeys during boot.
The options are:
●
Enable
●
One Time Enable
●
Disable
Default setting: Enable
Admin Setup
Lockout
Allows you to prevent users from entering Setup when an Administrator password is set.
Default Setting:
Disabled
Master Password
Lockout
Allows you to disable master password support. Hard disk password need to be cleared before the setting
can be changed
●
Enable Master Password Lockout (Disabled)
Secure Boot screen options
Option
Description
Secure Boot
Enable
This option enables or disables the
Secure Boot
feature.
●
Disabled
●
Enabled
Default setting: Enabled.
Secure Boot
Mode
Allows you to change to Secure Boot operation mode, modifies the behavior of the Secure Boot to allow
evaluation or enforcement of UEFI driver signatures. The options are:
●
Deployed Mode
—Before allowing execution, checks the integrity of UEFI drivers and bootloaders.
●
Audit Mode
—Performs a signature check but does not block execution of all UEFI drivers and
bootloaders.
System setup options
65