HP Business Notebook and Desktop PC F10 setup overview

ManualsBrandsHP ManualsDesktopsHP EliteBook 820 G1 Notebook PC

EMBEDDED SECURITY

Feature Function Default setting,

if applicable

Reboot

required

BIOS Integrity Checking (Note: HP Sure Start is only supported on 2013 EliteBook and ZBook notebooks) N/A



Verify Boot Block on every boot

Verify the integrity of the system’s boot block on boot. Disabled Yes



BIOS Data Recovery Policy

Recover System Data (For manual recovery during boot up press (Up

Arrow + Down Arrow + ESC) to restore System Data

Automatic Yes



Restore Network Configuration

to factory defaults

Restore the network address and other network parameters to factory

default

Yes

TPM Embedded Security Manages TPM Module settings N/A



TPM Device

Exposes the integrated TPM module Available Yes



Embedded Security Device

State

Enables the integrated TPM module Disabled Yes



TPM Reset to Factory Default

Sets TPM Embedded Security settings to factory default No Yes



OS Management of TPM

Allows operating system to manage TPM module Enabled Yes

 Reset of TPM from OS

Allows reset of TPM module from within the operating system Disabled Yes

System Management Command Allows authorized personnel to reset security settings in case of a

service event NOTE: In the event BIOS password is lost and this option

is disabled authorized personnel will not be able to remove lost

password.

Enabled Yes

UTILITIES

Anti-Theft Tools N/A



Intel Anti-Theft

Server-based security N/A

– Active Activates this option Enabled Yes

– Suspend Allows the feature to be disabled temporarily Disabled Yes



Absolute Software Computrace

N/A

– Current State Read-only setting that reports the current status

[Inactive/Active/Permanent Disabled]

Inactive N/A

Hard Drive Tools N/A



Save/restore Master Boot

Record (MBR) of the system

hard drive

Saves a baseline MBR that can be restored if a change is detected

NOTE: Not applicable for UEFI boot modes

Disabled Yes



DriveLock

Allows configuration of DriveLock Master and User passwords Disabled N/A



Automatic DriveLock

Requires the BIOS to authenticate the user before the drive is unlocked.

The user can be a BIOS user (managed by F10 Setup) or a ProtectTools

user (managed by the OS).

Following authentication, the BIOS automatically supplies the

DriveLock password.

A BIOS administrator password is required for this feature and is set as

the DriveLock master password.

Disabled N/A



Disk Sanitizer

Erases all data on selected hard drive; typically used prior to

repurposing or donation (Not supported under RAID mode or on SSDs)

N/A



Secure Erase

Uses a built-in command drive to erase data on an SSD N/A

System IDs N/A



Asset Tracking Number

Allows custom configuration of an asset tag (up to 18 characters) Serial Number No



Ownership Tag

Allows custom configuration of an ownership tag (up to 40 characters) Blank No



Ownership Tag 2

Allows custom configuration of an ownership tag (up to 40 characters) Blank No