Lenovo 20AQ006HUS Laptop User Manual


 
Table 5. Security menu items (continued)
Menu item
Submenu item
Value
Comments
able to work until they are re-enabled in the
ngerprint software.
Security Chip
Selection
Discrete TPM
Intel PPT
If you select Discrete TPM, you can use a
discrete TPM chip with TPM 1.2 mode. If you
select Intel PTT, you can use Intel Platform
Trusted technology (PTT) with TPM 2.0 mode.
Note:
Intel PTT can be used with Windows 8 or later
operating system.
Security Chip
Active
Inactive
Disabled
If you select Active, the security chip is
functional. If you select Inactive, the Security
Chip option is visible, but the security chip
is not functional. If you select Disabled, the
Security Chip option is hidden and the security
chip is not functional.
Security Reporting
Options
This option is available when Security Chip
is active. It is used to enable or disable the
following Security Reporting Options:
BIOS ROM String Reporting (Windows 7) or
UEFI ROM String Reporting (Windows 8):
BIOS text string
CMOS Reporting: CMOS data
NVRAM Reporting: Security data stored in
the Asset ID
SMBIOS Reporting: SMBIOS data
Clear Security Chip
Enter
Clear the encryption key.
Note: This item is displayed only if you have
selected Active for the Security Chip option.
Intel TXT Feature Disabled
Enabled
Enable or disable the Intel Trusted Execution
Technology.
Note: This item is displayed only if you have
selected Active for the Security Chip option.
Physical Presence
for Provisioning
Disabled
Enabled
Enable or disable the conrmation message
when you change the settings of the security
chip.
Security Chip
Physical Presence
for Clear
Disabled
Enabled
Enable or disable the conrmation message
when you clear the security chip.
Flash BIOS Updating
by End-Users
Disabled
Enabled
If you select Enabled, all users can update the
UEFI BIOS. If you select Disabled, only the
person who knows the supervisor password can
update the UEFI BIOS.
UEFI BIOS Update
Option
Secure RollBack
Prevention
Disabled
Enabled
If you select Disabled, you can ash the older
version UEFI BIOS.
Chapter 8. Advanced conguration 109