Lenovo ThinkVantage (Hardware Password Manager Deployment Guide) User Manual
Page 5
Contents
Preface . . . . . . . . . . . . . . . . . v
Chapter 1. Overview . . . . . . . . . . 1
Chapter 2. Installing Hardware
Password Manager on
ThinkManagement Console . . . . . . 3
Prerequisites . . . . . . . . . . . . . . . .
Preparing the core server . . . . . . . . . . .
ThinkManagement Console with HPM server
setup . . . . . . . . . . . . . . . . . . .
Migrating to a new LDAP server . . . . . . . . .
Installing Hardware Password Manager on a
Lenovo device . . . . . . . . . . . . . . . .
Chapter 3. Managing Hardware
Password Manager devices with
ThinkManagement Console . . . . . . 9
Viewing Hardware Password Manager devices and
their properties
Managing enrolled users on Hardware
Password Manager devices . . . . . . . .
Configuring an LDAP server connection . . .
Viewing Hardware Password Manager users
and their properties . . . . . . . . . . .
Removing a user’s access to a Hardware
Password Manager device . . . . . . . .
Managing Hardware Password Manager
groups . . . . . . . . . . . . . . . .
Managing remote actions and policy settings for
Hardware Password Manager devices . . . . .
Updating client policies globally . . . . . . . .
Updating hardware passwords globally . . . . .
Updating the emergency account . . . . . . .
Changing server policy settings . . . . . . . .
Defining scopes and roles for console users . . .
Chapter 4. Hardware Password
Manager Client . . . . . . . . . . . .
Hardware Password Manager device setup . . .
Registering a device with the Hardware Password
Manager server and enrolling the first user. . . .
Enrolling additional users on a Hardware Password
Manager device . . . . . . . . . . . . . .
Removing a user from a Hardware Password
Manager device . . . . . . . . . . . . . .
Unregistering a device from the Hardware
Password Manager server . . . . . . . . . .
Updating credentials on a Hardware Password
Manager device . . . . . . . . . . . . . .
Chapter 5. Deployment . . . . . . . .
Fingerprint integration . . . . . . . . . . . .
Safe Guard Easy/Safe Guard Enterprise
compatibility . . . . . . . . . . . . . . .
User enrollment on a pre-registered system .
Chapter 6. Scenarios . . . . . . . . .
Service scenarios (configuration changes) . . . .
Scenario 1 - Hardware configuration
changes . . . . . . . . . . . . . . .
Scenario 2 - CMOS error . . . . . . . . .
Scenario 3 - Replace the fingerprint device. .
Scenario 4 - Hardware passwords already
set
. . . . . . . . . . . . . . . . .
Scenario 5 - Setup under the operating system
(remote BIOS settings) . . . . . . . . . .
Scenario 6 - Replace the system board . . .
Scenario 7 - Add a hard disk drive . . . . .
Scenario 8 - Replace or move a hard disk
drive . . . . . . . . . . . . . . . . .
Scenario 9 - Change the hard disk location
within a system
Scenario 10 - Remove a hard disk drive . . .
Scenario 11 - Flashing the BIOS . . . . . .
Scenario 13 - Enter the BIOS setup. . . . .
Scenario 14 - Load default settings in the
BIOS setup . . . . . . . . . . . . . .
Scenario 15 - Do not protect all hard drives .
User Scenarios . . . . . . . . . . . . . .
Scenario 1 - Forgot Hardware Account
credentials, network connected . . . . . .
Scenario 2 - Forgot Hardware Account
credentials, NOT network connected . . . .
Scenario 3 - Forgot the corporate password .
Scenario 4 - Manual login using different
keyboard types
Scenario 5 - Handling enrollment from multiple
boot partitions . . . . . . . . . . . . .
Scenario 6 - BitLocker . . . . . . . . . .
Appendix A. Security and
convenience. . . . . . . . . . . . . .
Appendix B. Disaster recovery . . . .
© Copyright Lenovo 2010
iii