manualshive.com logo in svg

Intel AXXTPME3, Hardware User'S Manual

Share
Download
Intel AXXTPME3 Hardware User'S Manual Download Page 15

Intel® Trusted Platform Module Hardware User’s Guide

5

3

Configuring the TPM module

TPM Security BIOS

The BIOS TPM support conforms to the TPM PC Client Specific – Implementation 

Specification for Conventional BIOS, version 1.2, and to the TPM Interface specification, 

version 1.2. The BIOS adheres to the Microsoft Vista BitLocker* requirement. The role of 

the BIOS for TPM security includes the following:

Measures and stores the boot process in the TPM microcontroller to allow a TPM 

enabled operating system to verify system boot integrity.

Produces EFI and legacy interfaces to a TPM-enabled operating system for using 

TPM.

Produces ACPI TPM device and methods to allow a TPM-enabled operating system 

to send TPM administrative command requests to the BIOS.

Verifies operator physical presence. Confirms and executes operating system TPM 

administrative command 

Provides BIOS Setup options to change TPM security states and to clear TPM 

ownership.

For additional details, refer to the TCG PC Client Specific Implementation Specification, 

the TCG PC Client Specific Physical Presence Interface Specification, and the Microsoft 

BitLocker* requirement documents.

Physical Presence

Administrative operations to the TPM require TPM ownership or physical presence 

indication by the operator to confirm the execution of administrative operations. The 

BIOS implements the operator presence indication by verifying the setup Administrator 

password.

A TPM administrative sequence invoked from the operating system proceeds as follows:

1. User makes a TPM administrative request through the operating system’s security 

software.

2. The operating system requests the BIOS to execute the TPM administrative 

command through TPM ACPI methods and then resets the system.

3. The BIOS verifies the physical presence and confirms the command with the 

operator.

4. The BIOS executes TPM administrative command(s), inhibits BIOS Setup entry 

and boots directly to the operating system which requested the TPM command(s).

Summary of Contents for AXXTPME3

Page 1: ...Intel Trusted Platform Module TPM module AXXTPME3 Hardware User s Guide Intel Order Number G21682 003...

Page 2: ...rs must not rely on the absence or characteristics of any features or instructions marked reserved or undefined Intel reserves these for future definition and shall have no responsibility whatsoever f...

Page 3: ...ollowing chapters and appendices Chapter 1 provides a general overview of the Intel TPM module Chapter 2 describes the procedures for installing the Intel TPM module Chapter 3 provides the procedures...

Page 4: ...iv Intel Trusted Platform Module Hardware User s Guide...

Page 5: ...urity BIOS 5 Physical Presence 5 TPM Security Setup Options 6 Security Screen 6 Intel Trusted Execution Technology Intel TXT 7 Overview 7 Intel TXT hardware overview 8 Enabling Intel TXT on Intel Serv...

Page 6: ...vi Intel Trrusted Platform Module Hardware User s Guide...

Page 7: ...Intel Trusted Platform Module Hardware User s Guide vii List of Figures Figure 1 TPM module 1 Figure 2 TPM module Dimensioned Drawing 3 Figure 3 Setup Utility TPM Configuration Screen 6...

Page 8: ...viii Intel Trusted Platform Module Hardware User s Guide...

Page 9: ...Intel Trusted Platform Module Hardware User s Guide ix List of Tables Table 1 TPM Setup Utility Security Configuration Screen Fields 7 Table 2 TPM module Connector Pin out 11...

Page 10: ...x Intel Trusted Platform Module Hardware User s Guide...

Page 11: ...gerprint This unique fingerprint remains the same unless the pre boot environment is tampered with Therefore it is used to compare to future measurements to verify the integrity of the boot process Af...

Page 12: ...2 Intel Trusted Platform Module Hardware User s Guide...

Page 13: ...atform Module with the provided standoffs A host system board with the TPM connector on the board The TPM module docks into a connector on the baseboard and is retained by a tamper resistant screw Bel...

Page 14: ...or instructions see your server system documentation 3 Insert the standoff into the hole in the server workstation board and insert the TPM module connector into the connector in the board To locate t...

Page 15: ...hange TPM security states and to clear TPM ownership For additional details refer to the TCG PC Client Specific Implementation Specification the TCG PC Client Specific Physical Presence Interface Spec...

Page 16: ...that while using TPM a TPM enabled operating system or application may change the TPM state independent of the BIOS setup When an operating system modifies the TPM state the BIOS Setup displays the up...

Page 17: ...These capabilities provide the protection Setup Item Options Help Text Comments Enabled and Activated Enabled and Deactivated Disabled and Activated Disabled and Deactivated Information only Shows th...

Page 18: ...instructions to establish a more secure software stack 2 Chipset Extensions to the chipset deliver support for key elements of this new more protected platform They include 1 the capability to enforce...

Page 19: ...s successfully enabled Intel TPM Setup 1 Enable TPM module Go to BIOS setup Menu page Security Tab set administrator password 2 After administrator password is setup press F10 to save and exit BIOS se...

Page 20: ...10 Intel Trusted Platform Module Hardware User s Guide...

Page 21: ...le connects to the Intel TPM module connector on the Intel server board via the iPN FCI 20021321 00014D4LF or equivalent connector on the server board Table 2 TPM module Connector Pin out Pin Name Pin...

Page 22: ...12 Intel Trusted Platform Module Hardware User s Guide...

Page 23: ...rotect your computer system from sudden transient increases and decreases in electrical power use a surge suppressor line conditioner or uninterruptible power supply Be sure nothing rests on your comp...

Page 24: ...t static damage discharge static electricity from your body before you touch any of your computer s electronic components such as the microprocessor You can do so by touching an unpainted metal surfac...

Page 25: ...ect all cables connected to I O connectors or ports on the back of the system 5 Provide some electrostatic discharge ESD protection by wearing an antistatic wrist strap attached to chassis ground of t...

Page 26: ...dose bzw dem Netzger t um den Stromanschlu des Systems zu unterbrechen Die Stromkabel sind das Unterbrechungsger t zur Hauptstromquelle Die Steckdose in die das System gesteckt wird sollte sich in der...

Page 27: ...ermeiden 6 Schalten Sie das System niemals ohne ordnungsgem montiertes Geh use ein Zur ordnungsgem en K hlung und L ftung mu die Geh useabdeckung immer wieder vor dem Einschalten installiert werden Ei...

Page 28: ...portez une bande antistatique pour poignet et reliez la la masse du syst me toute surface m tallique non peinte du bo tier 6 Ne faites pas fonctionner le syst me tandis que le bo tier est ouvert Une...

Page 29: ...y ser de f cil acceso INSTRUCCIONES DE SEGURIDAD Cuando extraiga la tapa del chasis para acceder al interior del sistema siga las siguientes instrucciones 1 Apague todos los dispositivos perif ricos...

Page 30: ...bloqu elo para impedir que pueda accederse al mismo sin autorizaci n 5 Conecte todos los cables externos y los cables de alimentaci n CA al sistema Si el sistema ha estado en funcionamiento el micropr...

Page 31: ...l sistema qualora ve ne fosse uno installato 2 Togliere e mettere in un posto sicuro tutte le viti delle coperture 3 Togliere le coperture Per il giusto flusso dell aria e raffreddamento del sistema r...

Page 32: ...22 Intel Trusted Platform Module Hardware User s Guide...

Page 33: ...n Product Safety and EMC Compliance This Intel TPM module has been evaluated for regulatory compliance as an Intel end system and is included as part of the end system certification For information on...

Page 34: ...24 Intel Trusted Platform Module Hardware User s Guide...

Page 35: ...Mouser Electronics Authorized Distributor Click to View Pricing Inventory Delivery Lifecycle Information Intel AXXTPME3...

Reviews:

No comments

Brands by name

Popular brands

Load more brands