beautypg.com

Chapter 3, Key management – Elitegroup H61H2-M19 (V1.0) User Manual

Page 77

background image

Chapter 3

H61H2-M19 USER MANUAL

73

Aptio Setup Utility - Copyright (C) 2012 American Megatrends, Inc.

Version 2.15.1229. Copyright (C) 2012 American Megatrends, Inc.

Main

Advanced

Chipset

M.I.B III

Boot

Security

Exit

Default Key Provisioning

[Disabled]

Manage All Factory Keys (PK, KEK, DB, DBX)
Install default Secure Boot keys

Platform Key (PK)

NOT INSTALLED

Set PK from File
Get PK to File
Delete the PK
Key Exchange Key Database(KEK)

NOT INSTALLED

Set KEK from File
Get KEK to File
Delete the KEK
Append an entry to KEK
Authorized Signature Database(DB)

NOT INSTALLED

Set DB from File
Get DB to File
Delete the DB
Append an entry to DB
Forbidden Signature Database(DBX)

NOT INSTALLED

Set DBK from File
Get DBK to File
Delete the DBX
Append an entry to DBX

Image Execution Policy per device path
on Security Violation. Note: Only
users logged with Administrative
password can excercise Query User
policy setting

Key Management

Scroll to this item and press to view the following screen:



F1:General Help

+/- : Change Opt.

Enter : Select



:Select Screen

:Select Item

F2:Previous Values

F3:Optimized Defaults

F4:Save & Exit

ESC:Exit

Platform Key (PK)
This item shows the information of the platform key.
Set PK/KEK/DB/DBX from File
This item launches the file browser to set Efi Variable from the file. The file data must
be formatted as Efi Variable with TimeBased Authenticated Header.
Get PK/KEK/DB/DBX to File
This item is used to store secure variable to a file with a matching name in selected
file system’s root.
Delete the PK/KEK/DB/DBX
This item is used to delete the variable.

Default Key Provisioning (Disabled)
This item enables or disables you to force OEM default secure boot keys if system is
in setup mode.

Key Exchange Key Database (KEK)
This item shows the information of the key exchange key database.

Authorized Signature Database (DB)
This item shows the information of the authorized signature database.

Append an entry to KEK/DB/DBX
This item launches the file browser to Append new signature database from the file.
The file data must be formatted as Efi Variable with TimeBased Authenticated Header.

Forbidden Signature Database (DBX)
This item shows the information of the forbidden signature database.

See also other documents in the category Elitegroup Computer Accessories: