CLI Guide

ManualsBrandsDell ManualsConverged InfrastructurePrecision 7920 Rack

391

392

393

394

395

396

397

398

399

400

Table Of Contents

BIOS.SysSecurity.BiosUpdateControl (Read or Write)

Description

When set to Unlocked, all BIOS update will be allowed. When set to Limited, local BIOS updates from

DOS or UEFI shell based flash utilities, or from Lifecycle Controller User Interface are prohibited. Limited

is recommended for environments that do not require local BIOS updates. These environments include

Remote Enablement Update or executing Update Package from the OS.

Legal Values

● Unlocked

● Limited

● Locked

Default Value Not Applicable

Write Privilege Server Control

License Required iDRAC Express or iDRAC Enterprise

Dependency Not applicable

BIOS.SysSecurity.BootmanagerPassword (Read or Write)

Description

Bootmanager password option is available only when Setup Password is enabled. If set to Always, setup

password must be entered for accessing Boot Manager. If set to Never, setup password need not be

entered for accessing Boot Manager, One-shot UEFI Boot Menu.

Legal Values

● Always

● Never

Default Value Not Applicable

Write Privilege Server Control

License Required iDRAC Express or iDRAC Enterprise

Dependency Not applicable

BIOS.SysSecurity.InBandManageabilityInterface (Read or Write)

Description

When set to Disabled, this setting will hide the Management Engine's (ME) HECI devices and the

system's IPMI devices from the operating system. This prevents the operating system from changing

the ME power capping settings, and blocks access too all in-band management tools. All management

must be managed via out-of-band. Note: BIOS update requires HECI devices to be operational and DUP

updates require IPMI interface to be operational. This setting needs to be set to Enabled to avoid update

errors. Note: ePSA requires the IPMI interface to be functional for certain features. Disabling this setting

will also cause ePSA to not be fuly functional.

Legal Values

● Enabled

● Disabled

Default Value Not Applicable

Write Privilege Server Control

License Required iDRAC Express or iDRAC Enterprise

Dependency Not applicable

BIOS.SysSecurity.IntelSgx (Read or Write)

Description

Allows enabling or disabling of the Intel Software Guard Extension (SGX) Technology. When set to Off,

BIOS disables the SGX technology. When set to On, BIOS enables the SGX technology. When set to

Software, allows application to enable the SGX technology.

BIOS Attributes 397