Manualshelf

Setting up and configuring Intel AMT in HP Business Notebooks, Desktops, and Workstations - White Paper

ManualsBrandsHP ManualsDesktopsHP Compaq Elite 8300 Small Form Factor PC
31323334353637383940
35
Note
The admin password, PID, and PPS can be pre-populated by HP during
manufacturing. Refer to the OEM TLS-PSK provisioning section for more
information.
Legacy (zero-touch) provisioning uses a default certificate; no PID or PPS are needed. PKI is active in the base
image, which contains 15 pre-installed certificates.
o Delete PID and PPS
This option is used to delete the current PID and PPS entries and should be skipped.
After configuring TLS-PSK, return to the previous menu.
TLS PKI
Select this menu item in order to configure TLS-PKI via the Intel Remote Configuration screen,
14
shown in Figure 25.
Figure 25. Configuring TLS-PKI provisioning
Options are:
o Remote Configuration
This option enables (recommended; default) or disables TLS-PKI provisioning.
o PKI DNS Suffix
This option allows the PKI DNS suffix for the SCS to be specified.
o Manage Hashes
This option shows the hashes that are in the system, providing names and status (active/inactive). If there are no
hashes in the system, you are given the option to add hashes; if hashes are available, you are given the option to
delete one or more. For more information on supported certificates, refer to Appendix D: Supported certificates.
14
Intel refers to TLS-PKI provisioning as remote configuration.