Deployment Guide

ManualsBrandsDell ManualsConverged InfrastructureServers Solution Resources

System BIOS

27 Setting up BIOS on 15th Generation (15G) Dell EMC PowerEdge Servers | 508

L3 cache as

NUMA

Domain

• Enabled

• Disabled

• Auto

This field specifies that each Core Complex (CCX) within the

processor will be declared as a NUMA Domain.

Note: This option is only available on systems with AMD

processors.

Secure

Memory

Encryption

• Enabled

• Disabled

Enables or disables AMD secure encryption features such as

Secure Memory Encryption (SME) and Secure Encrypted

Virtualization (SEV).

In addition to enabling this option, SME must be supported

and activated by the operating system.

Similarly, SEV must be supported and activated by the

hypervisor.

This option also determines if other secure encryption

feature such as TSME and SEV-SNP features can be enabled.

Note: This option is only available on systems with AMD

processors.

Minimum SEV

non-ES ASID

This field determines the number of Secure Encrypted

Virtualization (SEV) ES and non-ES available Address Space

IDs.

The number specified is the dividing line between ES and

non-ES ASIDs.

ES - Encrypted State - the register save state area is also

encrypted along with the entire guest memory area.

The maximum number of ASIDs available depends on

installed CPU and memory configuration which can either

be 15, 253 or 509.

The default value is 1 and the value entered by user means

the number of non-ES ASIDs starts from the value entered

and ends at the maximum number of ASIDs available.

A value of 1 means there are only non-ES ASIDs available.

Example 1: If the maximum number of ASIDs is 15, the

default value 1 means there are 15 SEV non-ES ASIDs and 0

SEV ES ASIDs.

Example 2: If the maximum number of ASIDs is 15, the

value 4 means there are 12 SEV non-ES ASIDs and 3 SEV ES

ASIDs.

Example 3: If the maximum number of ASIDs is 509, the

value 40 means there are 470 SEV non-ES ASIDs and 39 SEV

ES ASIDs.

Note: This option is only available on systems with AMD

processors.

Secure

Nested

Paging

• Enabled

• Disabled

Enables or disables SEV-SNP, a set of additional security

protections.

Note: This option is only available on systems with AMD

processors.

Transparent

Secure

• Enabled

Enables or disables TSME.

TSME is always-on memory encryption that does not