manualshive.com logo in svg

S&T Kontron SBOX-5002, User Manual, Page: 83 / 94

Share
Download
S&T Kontron SBOX-5002 User Manual Download Page 83

SBOX-5002 -  User Guide, Rev. 1.0 

 

www.kontron.com 

 

// 83 

 

Figure 52: BIOS Security Setup Menu - Secure Boot Configuration - Key Management* 

BIOS SETUP UTILITY 

Main 

Advanced 

Security 

Power 

Event Logs 

Boot 

Save & Exit 

Factory Default Key Provision 

[Enabled] 

 

 

 

> Enroll all Factory Default keys 

 

> Save all Secure Boot variable 

 

 

 

Device Guard Ready 

 

> Remove 'UEFI CA' from DB 

 

> Restore DB defaults 

 

 

: Select Screen 

 

 

 

: Select Item 

Security Boot Variable 

  Size 

  Keys 

 Key Source 

Enter: Select 

> Platform Key (PK) 

  1121 

 

 Factory 

+/-: Change Opt. 

> Key Exchange Keys 

  7129 

 

 Factory 

F1: General Help 

> Authorized Signatures 

  8687 

 

 Factory 

F2: Previous Values 

> Forbidden Signatures 

  3724 

 

77 

 Factory 

F3: Optimized Defaults 

> Authorized TimeStamps 

 

 

 No Key 

F4: Save & Exit 

> OsRecovery Signature 

 

 

 No Key 

ESC: Exit 

Version 2.19.1268. Copyright (C) 2019, American Megatrends, Inc. 

 

Feature 

Option 

Description 

Factory Default Key 
Provision 

[Disabled], [Enabled] 

Provision factory default keys on next re-boot only when 
System in Setup Mode 

Enroll all Factory 
Default Keys 

[Yes], [No] 

Force System to User Mode. Configure NVRAM to contain OEM-
defined factory default Secure Boot keys 

Save all Secure Boot 
variables 

Select a File system 

Copy NVRAM content of Secure Boot variables to files in a root 
folder on a file system device 

Remove 'UEFI CA' 
from DB 

[Yes], [No] 

Device Guard ready system must not list 'Microsoft UEFI CA' 
Certificate in Authorized Signature database (db). 

Restore DB defaults 

[Yes], [No] 

Restore DB variable to factory defaults 

Platform Key (PK) 

[Details], [Save To 
File], [Set New Key], 
[Delete Key] 

Enroll Factory Defaults or load certificates from a file: 
1. Public Key Certificate in (a) EFI_SIGNATURE_LIST; (b) 
EFI_CERT_X509 (DER encoded); (c) EFI_CERT_RSA2048 (bin); (d) 
EFI_CERT_SHA256, 384, 512 
2. Authenticated UEFI Variable 
3. EFI PE / COFF Image (SHA256) 
Key Source: Factory, External, Mixed 

Key Exchange Keys 

[Details], [Save To 
File], [Set New Key], 
[Append Key], [Delete 
Key] 

Authorized 
Signatures 

[Details], [Save To 
File], [Set New Key], 
[Append Key], [Delete 
Key] 

Forbidden Signatures  [Details], [Save To 

File], [Set New Key], 
[Append Key], [Delete 
Key] 

Summary of Contents for Kontron SBOX-5002

Page 1: ...USER GUIDE www kontron com 1 SBOX 5002 Doc User Guide Rev 1 0 Doc ID To be Determined...

Page 2: ...SBOX 5002 User Guide Rev 1 0 www kontron com 2 This page has been intentionally left blank...

Page 3: ...ill be suitable for the specified use without further testing or modification Kontron expressly informs the user that this user guide only contains a general description of processes and instructions...

Page 4: ...s is entirely at your risk To minimize the risks associated with your products and applications you should provide adequate design and operating safeguards You are solely responsible for compliance wi...

Page 5: ...ntron contacts by visiting http www kontron com support Customer Service As a trusted technology innovator and global solutions provider Kontron extends its embedded market strengths into a services p...

Page 6: ...cribed by the law may endanger your life health and or result in damage to your material ESD Sensitive Device This symbol and title inform that the electronic boards and their components are sensitive...

Page 7: ...before performing any work on this product Earth ground connection to vehicle s chassis or a central grounding point shall remain connected The earth ground cable shall be the last cable to be discon...

Page 8: ...oduct then re pack it in the same manner as it was delivered Special care is necessary when handling or unpacking the product See Special Handling and Unpacking Instruction Quality and Environmental M...

Page 9: ...Electromagnetic Compatibility EU 17 2 2 FCC Statement USA 17 2 3 EMC Compliance Canada 17 3 Shipment and Unpacking 18 3 1 Unpacking 18 3 2 Scope of Delivery 18 3 2 1 Standard 18 3 2 2 Optional Parts 1...

Page 10: ...Supply 43 8 2 Operating System and Hardware Component Drivers 44 9 Maintenance and Cleaning 45 10 Technical Specifications 46 10 1 Mechanical Specifications 46 10 1 1 Mechanical Dimensions 47 10 2 Env...

Page 11: ...ning the holes of desk stand brackets and chassis vertical 35 Figure 12 Fixing securing the stand brackets to the chassis horizontal 36 Figure 13 Fixing securing the stand brackets to the chassis hori...

Page 12: ...BIOS Advanced Menu Network Stack Configuration 75 Figure 46 BIOS Advanced Menu Graphics Configuration 76 Figure 47 BIOS Advanced Menu Intel I210 Gigabit Network Connection 77 Figure 48 BIOS Advanced...

Page 13: ...sufficient air circulation is available to cool the product please ensure that the ventilation openings are not covered or blocked If an air filter is provided this should be cleaned regularly Do not...

Page 14: ...ndirectly a reliable protective earthing connection is provided a suitable easily accessible disconnecting device is used in the application e g overcurrent protective device if the device itself is n...

Page 15: ...nnectors or connecting test equipment 6 Keep work area free of non conductive materials such as ordinary plastic assembly aids and Styrofoam 7 Use only field service tools which are conductive such as...

Page 16: ...at may result in an explosion or the leakage of flammable liquid or gas Do not dispose of lithium batteries in general trash collection Dispose of the battery according to the local regulations dealin...

Page 17: ...ed and used in accordance with the instructions may cause harmful interference to radio communications However there is no guarantee that interference will not occur in a particular installation If th...

Page 18: ...u notice any shipping damage or inconsistencies between the contents and your order please contact Kontron for help and information 3 2 Scope of Delivery 3 2 1 Standard 1x SBOX 5002 corresponding to t...

Page 19: ...es 1x DDR4 SO DIMM memory socket 1x M 2 Key B socket type 2242 2260 2280 1x M 2 Key E socket type 2230 The device is designed to be operated in Horizontal position placed as a desktop unit with the su...

Page 20: ...Card Interface The baseboard comes with two onboard M 2 interface connectors with Key B Type 2242 2260 2280 and Key E Type 2230 support respectively The Key B connector is intended to be used to insta...

Page 21: ...tached by means of the power cord to an appropriate mains DC Even when the system is turned off via the power switch there is still a standby voltage on the baseboard The unit is only completely disco...

Page 22: ...jack is designed to connect the microphone used for video conferencing voice narrations or simple audio recordings 4 2 4 USB 3 1 The front I O panel of the SBOX 5002 provides two USB 3 1 2 0 interface...

Page 23: ...ied power adapter converts AC power to DC for use with this jack Power supplied through this jack supplies power to the PC To prevent damage to the PC always use the supplied power adapter Adapter s p...

Page 24: ...fer 2x7 pin mounted on the baseboard to provide RS232 422 485 or reduced RS232 only RX TX RTS and CTS support serial communication function 4 3 6 Aperture reserved for USB 3 1 Type C port The SBOX 500...

Page 25: ...ty Slot See Chapter 4 4 1 4 4 1 Kensington Security Slot The slot is used for attaching a lock and cable apparatus Locks are generally secured in place with a key or combination lock attached to a rub...

Page 26: ...ee Chapter 4 5 2 4 M 2 Fixing Bolt for Key B Type 2242 5 M 2 Fixing Bolt for Key B Type 2260 6 M 2 Fixing Bolt for Key B Type 2280 Key E Type 2230 7 RS232 422 485 Wafer COM1 see Chapter 4 5 3 8 Reduce...

Page 27: ...22 485 serial port wafer COM1 and one reduced RS232 serial port wafer COM2 only RX TX RTS CTS support mounted on the baseboard allowing the expansion with a RS232 422 485 or reduced RS232 DB9 serial p...

Page 28: ...n this manual Only personnel with appropriate qualifications trainings and authorization are permitted to install and work with the device The installation removal of HHD SSD and or expansion cards ma...

Page 29: ...please perform the following steps 1 Close all applications Shut down the system properly and disconnect the connection to the main power source Disconnect all peripherals 2 The SBOX 5002 should lay...

Page 30: ...closed condition Only when the access cover is properly fixed with the screws it is ensured that the user does not have access to the internal parts of the SBOX 5002 5 1 1 Installing SO DIMM memory mo...

Page 31: ...Type 2260 Screw the bolt to the corresponding position according to the type of the SSD In case of a Type 2280 SSD unscrew it from the baseboard before the installation 5 1 3 Installing an M 2 WLAN Bl...

Page 32: ...stem ambient temperature depends mostly on the power consumption of the processor and the chipset For the temperature evaluation a specialised tool from Intel was used to set the processor to a define...

Page 33: ...or any and all damages resulting from operation of the unit with foreign objects inside the chassis The SBOX 5002 has to be installed and operated only by trained and qualified personnel Only personne...

Page 34: ...ck of a monitor on a wall other support surface or inside a custom enclosure machine 7 1 1 Desktop Installation SBOX 5002 is supplied with a desk stand kit Figure 9 The kit consists of two stand brack...

Page 35: ...Aligning the holes of desk stand brackets and chassis vertical 2 Place the desk stand brackets on the chassis 3 Insert the pin side of the plastic clips Figure 9 pos 3 into the clip holes Figure 9 pos...

Page 36: ...SBOX 5002 User Guide Rev 1 0 www kontron com 36 Figure 12 Fixing securing the stand brackets to the chassis horizontal Figure 13 Fixing securing the stand brackets to the chassis horizontal...

Page 37: ...supplied with a wall mount kit Figure 14 The kit consists of two wall mount brackets Figure 14 pos 1 and four screws Figure 14 pos 2 Figure 14 Wall mount kit 1 Wall Mount Bracket 2 Screw Figure 15 Ho...

Page 38: ...re 14 pos 1 with the holes on the chassis Figure 16 Aligning the holes of wall mount brackets and chassis 3 Place the wall mount stand brackets on the chassis 4 Secure the wall mount brackets to the c...

Page 39: ...nd four thumb head screws with hanger knobs Figure 17 pos 3 Figure 17 Optional VESA mounting kit 1 VESA Adapter 2 Cross head Screw 3 Thumb Screw with Hanger Knob The VESA adapter complies with VESA 10...

Page 40: ...o a monitor as an example Figure 19 Securing the thumb screws 3 Align the screw holes marked number 2 on the VESA adapter with the holes on the bottom side of the chassis of the SBOX 5002 4 Place the...

Page 41: ...he SBOX 5002 on the mounting surface 7 Now the SBOX 5002 is firmly hanged on the mounting surface For a sufficient air circulation around the device we recommend keep a proper clearance and not mount...

Page 42: ...2 DC Power Connection The SBOX 5002 is connected by a DC power input jack Figure 2 pos 1 to a DC power source The SBOX 5002 is delivered with a power adapter to convert AC voltage into DC 19 V and a...

Page 43: ...ched to the system should be the power wires The SBOX 5002 must be connected DC power supply complying with the SELV Safety Extra Low Voltage requirements of EN 60950 1 standard It must be observed th...

Page 44: ...ts Your system is fully operational when you switch it on for the first time If you have ordered the SBOX 5002 without a pre installed operating system you will need to install the operating system an...

Page 45: ...for proper operation For light soiling clean the SBOX 5002 with a dry cloth Carefully remove dust from the surface of the chassis using a clean soft brush Stubborn dirt should be removed using a mild...

Page 46: ...with SATA 3 0 PCIe x1 1x M 2 Key E Type 2230 mixed with PCIe x1 Intel CNVi support Power Input Voltage DC 19 V Connector DC Jack on rear Firmware BIOS AMI uEFI BIOS w SPI Flash Watchdog Programmable W...

Page 47: ...ev 1 0 www kontron com 47 Weight 700 g 1 54 lb Mounting Wall Mount VESA Mount 100 mm x 100 mm Desktop Stand Security 1x Kensington Security Slot on left 10 1 1 Mechanical Dimensions Figure 22 Mechanic...

Page 48: ...nvironmental Conditions Table 4 Environmental Conditions Operating Temperature 0 C 40 C 32 F 104 F Storage Temperature 20 C 80 C 4 F 176 F Humidity 5 85 10 3 Standards and Certifications Table 5 Stand...

Page 49: ...19Vin 2 Ground 11 1 2 Ethernet Connectors Table 7 Ethernet Connector see Figure 2 pos 3 Pin Signal Name LAN1 LAN2 RJ45 1 TX1 8 7 6 5 4 3 2 1 2 TX1 3 TX2 4 TX3 5 TX3 6 TX2 7 TX4 8 TX4 11 1 3 USB 3 0 Po...

Page 50: ...4 pin USB Connector Type A Version 2 0 1 USBVCC 2 USB_D 3 USB_D 4 GND 11 1 5 DP Connector Table 10 DP Connector see Figure 2 pos 2 Pin Signal Name DP Connector 1 TX0 2 GND 3 TX0 4 TX1 5 GND 6 TX1 7 T...

Page 51: ...or see Figure 1 pos 2 Pin Signal Name Line out Connector Corresponding Audio Jack Plug Tip Line Out_L Ring Line Out_R Sleeve GND 11 1 7 Mic In Connector Table 12 Mic In Connector see Figure 1 pos 3 Pi...

Page 52: ...rst characters appear on the screen POST messages or splash screen 3 Press the F2 key 4 If the uEFI BIOS is password protected a request for password will appear Enter either the User Password or the...

Page 53: ...cific Help window providing an explanation of the respective function 12 2 1 Main Setup Menu Upon entering the uEFI BIOS Setup program the Main Setup menu is displayed This screen lists the Main Setup...

Page 54: ...glish F1 General Help F2 Previous Values Access Level Administrator F3 Optimized Defaults F4 Save Exit Keyboard Layout English ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc Featu...

Page 55: ...0D97870C896 Network Controller Details LAN 2 MAC Address 00 30 59 12 04 8D LAN 1 MAC Address 00 30 59 19 1D 83 Processor Details Processor Type Intel Celeron J4105 CPU 1 50GHz CPU Patch ID 706A1 00000...

Page 56: ...Open Source Software License Information This system board contains Open Source Software Select Screen For license details please visit the following web site Select Item Enter Select http support fs...

Page 57: ...BIOS Update PCI Subsystem Settings CPU Configuration Drive Configuration SMART Settings Trusted Computing USB Configuration System Management LVDS Configuration Embedded Display Port Configuration I...

Page 58: ...Management LVDS Configuration Select Screen Embedded Display Port Configuration Select Item I O Configuration Enter Select Serial Port Console Redirection Change Opt Network Stack Configuration F1 Ge...

Page 59: ...dio Configuration Change Opt Azalia HD Audio Enabled F1 General Help F2 Previous Values WLAN Bluetooth Enabled F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American M...

Page 60: ...this feature The terms of use can be found in the BIOS manual or online at tou ts fujitsu com Remember By using this feature the Network stack and the Ipv4 PXE Support get activated automatically Aut...

Page 61: ...ct Change Opt F1 General Help F2 Previous Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc Feature Option Description PERR Generation Disab...

Page 62: ...ican Megatrends Inc Feature Option Description Active Processor Cores All 1 2 3 Number of cores to enable in each processor package Intel Virtualization Technology Disabled Enabled When enabled a VMM...

Page 63: ...SATA Port 1 Phison SSMP128 128 0GB F1 General Help Port 1 Enabled F2 Previous Values Hot Plug Disabled F3 Optimized Defaults F4 Save Exit M 2 SATA Mode Auto ESC Exit Version 2 19 1268 Copyright C 2019...

Page 64: ...gs Boot Save Exit SMART Settings SMART Self Test Enabled Select Screen Select Item Enter Select Change Opt F1 General Help F2 Previous Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1...

Page 65: ...rent TPM Status Information Change Opt TPM 2 0 Device Found F1 General Help F2 Previous Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc Fe...

Page 66: ...reen Select Item Enter Select Change Opt F1 General Help F2 Previous Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc This feature is activ...

Page 67: ...nu USB Configuration USB Port Routing BIOS SETUP UTILITY Main Advanced Security Power Event Logs Boot Save Exit Internal USB Header 1 Auto Internal USN Header 2 Auto Select Screen Select Item Enter Se...

Page 68: ...G 3 3V 3373 mV F1 General Help VCC 3 3V 3373 mV F2 Previous Values 5V 5140 mV F3 Optimized Defaults 3 3V AUX 3373 mV F4 Save Exit VBAT 3 0V 3180 mV ESC Exit Version 2 19 1268 Copyright C 2019 American...

Page 69: ...LVDS Configuration LVDS Support Disabled Select Screen Select Item Enter Select Change Opt F1 General Help F2 Previous Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C...

Page 70: ...Select Change Opt F1 General Help F2 Previous Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc Feature Option Description eDP Brightness V...

Page 71: ...y Power Event Logs Boot Save Exit Serial Port 1 Configuration Serial Port Enabled Select Screen Device Settings IO 3F8h IRQ 3 Select Item Enter Select Change Setting Auto Change Opt Serial Port Mode R...

Page 72: ...0kbps Figure 42 BIOS Advanced Menu I O Configuration Serial Port 2 Configuration BIOS SETUP UTILITY Main Advanced Security Power Event Logs Boot Save Exit Serial Port 2 Configuration Serial Port Disab...

Page 73: ...irection Enable or Disable Figure 44 BIOS Advanced Menu Serial Port Console Redirection Console Redirection Settings BIOS SETUP UTILITY Main Advanced Security Power Event Logs Boot Save Exit Console R...

Page 74: ...um of 1 s in the data bits is odd Mark Parity bit is always 1 Space Parity bit is always 0 Mark and Space Parity do not allow for error detection Stop Bits 1 2 Stop bits indicate the end of a serial d...

Page 75: ...General Help F2 Previous Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc These items appear only when enabling Network Stack Feature Opti...

Page 76: ...pt F1 General Help F2 Previous Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc Feature Option Description Primary Display Internal Graphic...

Page 77: ...I210 Gigabit Network Communication Select Screen Chip Type Intel i210 Select Item PCI Device ID 1533 Enter Select PCI Address 02 00 00 Change Opt F1 General Help Link Status Disconnected F2 Previous...

Page 78: ...ious Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc Feature Option Description Link Speed Auto Negotiated 10 Mbps Half 10 Mbps Full 100 M...

Page 79: ...40 Driver Released Date 2017 03 09 Select Screen Device Information Select Item Device Name Realtek PCIe GBE Family Controller Enter Select PCI Slot 03 00 00 Change Opt MAC Address 00 30 59 19 1D 83 F...

Page 80: ...ord Description If ONLY the Administrator s password is set then this only limits access to Setup and is only asked for when entering Setup If ONLY the User s password is set then this is a power on p...

Page 81: ...WU is blocked System Firmware Rollback Disabled Enabled Specifies if it is allowed to rollback BIOS to an older version If only the administrator s password is set then only access to setup is limite...

Page 82: ...led Enabled Secure Boot can be enabled if 1 System running in User mode with enrolled Platform Key PK 2 CSM function is disabled Secure Boot Customization Standard Custom Secure Boot mode selector Cus...

Page 83: ...eys on next re boot only when System in Setup Mode Enroll all Factory Default Keys Yes No Force System to User Mode Configure NVRAM to contain OEM defined factory default Secure Boot keys Save all Sec...

Page 84: ...SBOX 5002 User Guide Rev 1 0 www kontron com 84 Feature Option Description Authorized TimeStamps Set New Key Append Key OsRecovery Signatures Set New Key Append Key...

Page 85: ...a record of all passwords in a safe place Forgotten passwords results in being locked out of the system If the system cannot be booted because the User Password or the Supervisor Password are not know...

Page 86: ...activated only when enabling LAN This feature is activated only when selecting Always On for USB Power These items appear only when enabling Wake Up Timer Feature Option Description Power Failure Rec...

Page 87: ...ependent wakeup keys are e g Left CTRL Right CTRL or a special power button Requires USB Power set to Always On Wake Up Timer Disabled Enabled Allows the system to be switched on via an internal timer...

Page 88: ...Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc Figure 55 BIOS Event Logs Setup Menu Change Smbios Event Log Settings BIOS SETUP UTILITY Main Advanced Security Power Eve...

Page 89: ...u View Smbios Event Log BIOS SETUP UTILITY Main Advanced Security Power Event Logs Boot Save Exit Date TIME ERROR CODE SEVERITY 08 06 20 07 27 14 FJ 002E0001 INFORMATIONAL Select Screen 08 06 20 07 28...

Page 90: ...er Startup On The keys on the keypad will act as numeric keys Off The keys on the keypad will act as cursor keys Quiet Boot Disabled Enabled Enables or disables Quiet Boot option Logo Resolution Defau...

Page 91: ...ecifies whether the Boot menu can be invoked during the POST process by pressing the F12 key Enabled The Boot menu can be invoked Disabled The Boot menu cannot be invoked Boot Removable Media Disabled...

Page 92: ...pt Boot Override F1 General Help Diagnostic Program F2 Previous Values F3 Optimized Defaults F4 Save Exit ESC Exit Version 2 19 1268 Copyright C 2019 American Megatrends Inc Feature Description Save C...

Page 93: ...thernet HDD Hard Disk Drive HDMI High Definition Multimedia Interface LAN Local Area Network LED Light Emitting Device LVDS Low Voltage Differential Signaling ME F W Management Engine Firmware mPCIe m...

Page 94: ...tron provides secure and innovative applications for a variety of industries As a result customers benefit from accelerated time to market reduced total cost of ownership product longevity and the bes...

Reviews:

No comments