Configuring System Security Settings

On the Security screen, configure the settings as described in the following table:

Table 8-1 BIOS Security Settings

Setting	Description of Option
Secure Boot Configuration	Disabled by default. To enable, set the Supervisor Password.
Secure Boot Option	Turn the UEFI secure boot firmware validation process Off or On.
Reset to Default	Reset secure boot variables to the factory default.
Change to Customization	Delete the protection key, change the platform to setup mode, and disable secure boot.
Set Supervisor Password	Set or clear the supervisor password.
Supervisor Hint String	Enter a hint for the password.
Min. Password Length	Set a minimum length to enforce for user passwords.
HDD Password Select	Select the password structure to apply to hard disk drives: User Only: Supports user account passwords. User + Master: Supports user account passwords and a master password.
Set HDDNumber User Password	Set a password for the user account for this HDD.
Set HDDNumber Master Password	Set a master password for this HDD.
TPM Device	To access this option, tap Advanced, tap System Setup, and then tap Enter on the Security Configuration option. Select PTT (Intel Platform Trust Technology) to Enable or Disable Trusted Platform Module support. The TPM Device is disabled by default.
PTT Enabled PCR Banks	This option is available when the TPM Device option is set to PTT. Select the Secure Hashing Algorithm to use with PTT/TPM. SHA1 is a 160-bit hash algorithm. SHA256 is a 256-bit hash algorithm. Both enables concurrent use of SHA1 and SHA256 algorithms.