Lenovo THINKPAD Z60M User Manual
Page 107
v
Check
Disable
Password
Recovery
->
click
Next
.
v
Review
the
Summary
and
click
Apply
to
write
the
XML
file
to
the
following
location
C:\ThinkPad.xml.
v
Click
Finish
to
close
the
wizard.
7.
Use
the
tool
found
at
C:\Program
Files\Lenovo\Client
Security
Solution\xml_crypt_tool.exe
to
encrypt
the
XML
script
with
a
password.
From
a
command
Prompt,
use
the
following
syntax:
a.
xml_crypt_tool.exe
C:\ThinkPad.xml
/encrypt
XMLScriptPW.
b.
The
file
will
be
called
C:\ThinkPad.xml.enc
and
be
protected
by
the
password
=
XMLScriptPW.
On
the
deployment
machine:
1.
Using
your
company’s
software
distribution
tools,
deploy
the
ThinkVantage
Fingerprint
software
executable
setup.exe
that
was
extracted
from
the
preparation
machine
to
each
deployment
machine.
When
the
setup.exe
is
pushed
to
the
machine,
install
using
the
following
command:
setup.exe
CTLCNTR=0
/q
/i
2.
The
tutorial
is
installed
by
setup.exe
at
the
same
time.
3.
Using
your
company’s
software
distribution
tools,
deploy
the
ThinkVantage
Fingerprint
Console
executable
(fprconsole.exe)
that
was
extracted
from
the
preparation
machine
to
each
deployment
machine.
v
Place
the
fprconsole.exe
file
in
the
C:\Program
Files\ThinkVantage
Fingerprint
Software\
directory.
v
Turn
off
BIOS
power-on
security
support
by
running
the
following
command:
fprconsole.exe
settings
TBX
0.
4.
Using
your
company’s
software
distribution
tools,
deploy
the
ThinkVantage
Client
Solution
executable
tvtcss70_xxxx.exe
(where
XXXX
is
the
build
ID).
v
When
the
z500zisxxxxus00.exe
is
pushed
to
the
machine,
install
through
the
following
command:
z500zisxxxxus00.exe
/s
/v/qn
NOCSSWIZARD=1
SUPERVISORPW=”BIOSpw”.
v
The
installation
of
the
software
will
automatically
enable
the
Trusted
Platform
Module
hardware.
5.
After
rebooting
the
system,
configure
the
system
with
the
XML
script
file
through
the
following
procedure:
v
Copy
the
Thinkpad.xml.enc
file
prepared
early
to
the
C:\
directory.
v
Open
a
different
command
prompt
and
run
C:\Program
Files\Lenovo\Client
Security
Solution\vmserver.exe
C:\ThinkPad.xml.enc
XMLScriptPW.
6.
After
a
reboot,
the
system
is
now
ready
for
Client
Security
Solution
user
enrollment.
Each
user
can
log
into
the
system
with
their
user
ID
and
Windows
password.
Every
user
that
logs
into
the
system
will
automatically
be
prompted
to
enroll
into
Client
Security
Solution
and
then
be
able
to
enroll
into
the
fingerprint
reader.
7.
After
all
users
for
the
system
have
been
enrolled
in
the
ThinkVantage
Fingerprint
Software,
the
secure
mode
setting
can
be
enabled
to
force
all
Windows
non-administrator
users
to
logon
with
their
fingerprint.
v
Run
the
following
command:
C:\Program
Files\ThinkVantage
Fingerprint
Software\fprconsole.exe
settings
securemode
1
v
To
remove
the
message
Press
Ctrl+Alt+Delete
to
logon
using
a
password.
From
the
logon
screen,
run
the
following
command:
C:\Program
Files\ThinkVantage
Fingerprint
Software\fprconsole.exe
settings
CAD
0
Chapter
6.
Best
Practices
101