Security, Come-chl6 / bios operation – Kontron COMe-cHL6 User Manual

COMe-cHL6 / BIOS Operation

Security

Feature

Options

Description

TPM Action

No Change

Enable
Disable

Activate
Deactivate

Clear
Enable and Activate

Disable and Deactivate
Set Owner Install, with state=True

Set Owner Install, with state=False
Enable, Activate, and Set Owner Install with state=True

Disable, Deactivate, and Set Owner Install with
state=False

Clear, Enable, and Activate
Require PP for provisioning

Do not require PP for provisioning
Require PP for clear

Do not require PP for clear
Enable, Activate, and clear

Enable, Activate, Clear, Enable, and Activate

Enact TPM Action

Omit Boot Measurements

Disabled
Enabled

Enabling this option causes the system to omit
recording boot device attempts in PCR[4]

110