No relevant resource is found in the selected language.
MENU
Support Documentation
BIOS Parameter Reference (Kunpeng 920 Processor) 11
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Security

Security

This topic describes the parameters used for configuring security functions on the Security screen.

On the Security screen, you can set the administrator password. Figure 4-60 shows the Security screen. Table 4-49 describes the parameters.

The Security screen varies according to the server or BIOS version.

Figure 4-60 Security screen
Table 4-49 Parameters on the Security screen

Parameter

Description

Default Value

Password Status

Displays whether the password takes effect.

Installed

Set Supervisor Password

Changes the password.

NOTE:
  • The password must be a string of 8 to 16 characters, and contain at least three types of the following characters: special characters including spaces (mandatory), uppercase letters, lowercase letters, and digits.
  • To restore the default password, see How Do I Reset the BIOS Password?

The default BIOS password is Admin@9000.

NOTE:

If the BIOS version supports the first-login password function (The BIOS does not have a password by default, and the system prompts you to set a new password when you access the Setup screen for the first time), you must set a new password before logging in to the Setup screen. For details, see Accessing the BIOS.

Clear Supervisor Password

Clears the password.

NOTE:

This parameter is not supported if the BIOS version supports the first-login password function (The BIOS does not have a password by default, and the system prompts you to set a new password when you access the Setup screen for the first time). For details, see Accessing the BIOS.

N/A

Set Crypto Length

Sets the password encryption algorithm. The valid range is 32–48.

32

Set History Password Time

Sets the number of latest historical passwords that are saved. The value range is 3–6.

5

Set Lock Count

Sets the number of locking times. If the number of incorrect password attempts exceeds the value, the device is locked. The valid range is 1–5.

3

Set Lock Time

Sets the locking time. After the locking time expires, the device is unlocked. The valid range is 1–5, in minutes.

5

Secure Boot

Specifies whether to enable secure boot. The options are as follows:

  • Disable
  • Enable

Disable

Secure Boot Certificate Configuration

Provides access to secure boot certificate configuration.

NOTE:

Only the BIOSs on the following servers support this menu:

  • BIOS V159 or later on TaiShan 200 servers (models 2180, 2280, and 5280)
  • BIOS V168 or later on TaiShan 200 servers (model 1280)
  • BIOS V123 or later on Atlas 500 Pro AI edge servers (model 3000) and TaiShan 200 servers (model 5290)
  • BIOS V125 or later on TaiShan 200 servers (model 2480), Atlas 800 training servers (model 9000), and Atlas 900 compute nodes

N/A

Figure 4-61 shows the Secure Boot Certificate Configuration screen. Table 4-50 describes the parameters.

Only the BIOSs on the following servers support this menu:

  • BIOS V159 or later on TaiShan 200 servers (models 2180, 2280, and 5280)
  • BIOS V168 or later on TaiShan 200 servers (model 1280)
  • BIOS V123 or later on Atlas 500 Pro AI edge servers (model 3000) and TaiShan 200 servers (model 5290)
  • BIOS V125 or later on TaiShan 200 servers (model 2480), Atlas 800 training servers (model 9000), and Atlas 900 compute nodes
Figure 4-61 Secure Boot Certificate Configuration screen
Table 4-50 Parameters on the Secure Boot Certificate Configuration screen

Parameter

Description

Default Value

Current Seure Boot State

Displays the secure boot status.

Disabled

Secure Boot Mode

Specifies the secure boot mode. The options are as follows:

  • Standard Mode
  • Custom Mode

Standard Mode

Custom Secure Boot Options

Imports and deletes signatures in the customized mode.

NOTE:
  • This parameter is available only when Secure Boot Mode is set to Custom Mode.
  • When you access the Secure Boot Certificate Configuration screen again after reboot, the value of Secure Boot Mode changes to Standard Mode.

N/A

Figure 4-62 shows the Custom Secure Boot Options screen. Table 4-51 describes the parameters.

Figure 4-62 Custom Secure Boot Options screen
Table 4-51 Parameters on the Custom Secure Boot Options screen

Parameter

Description

DB Options

Provides access to DB certificate configuration, where you can set the trusted whitelist.

NOTE:

After Secure Boot is enabled, only the OS or external device that has a certificate added to the whitelist can be started.

DBX Options

Provides access to DBX certificate configuration, where you can set the untrusted blacklist.

The DB Options screen is similar to the DBX Options screen. The following uses the DB Options screen as an example.

Figure 4-63 shows the DB Options screen. Table 4-52 describes the parameters.

Figure 4-63 DB Options screen
Table 4-52 Parameters on the DB Options screen

Parameter

Description

Enroll Signature

Imports signatures.

Delete Signature

Deletes signatures.

Figure 4-64 shows the Enroll Signature screen. Table 4-53 describes the parameters.

Figure 4-64 Enroll Signature screen
Table 4-53 Parameters on the Enroll Signature screen

Parameter

Description

Enroll Signature Using File

Imports the signature using a file system.

Commit Changes and Exit

Saves the changes and exits.

Discard Changes and Exit

Discards the changes and exits.

Figure 4-65 shows the Enroll Signature Using File screen. The screen varies according to the hard drive, DVD drive, and USB flash drive configured for the server.

Figure 4-65 Enroll Signature Using File screen

Figure 4-66 shows the Delete Signature screen. Table 4-54 describes the parameters.

Figure 4-66 Delete Signature List Form screen
Table 4-54 Parameters on the Delete Signature List Form screen

Parameter

Description

Delete All Signature List

Deletes all signature lists.

Selects a parameter and press Enter to delete the signature list.

Signature List, Entry-1

Deletes signature data.

Figure 4-67 shows the Signature List, Entry-1 screen. Table 4-55 describes the parameters.

Figure 4-67 Delete Signature Data Form screen
Table 4-55 Parameters on the Delete Signature Data Form screen

Parameter

Description

Delete All Signature Data

Delete all signature data.

Select a parameter and press Enter to delete all signature data.

Delete Checked Signature Data

Deletes the selected signature data.

NOTE:

This parameter is available only when Signature Data, Entry-1 is selected.

Signature Data, Entry-1

Selects the signature data to be deleted.

The value is displayed in a checkbox and is not selected by default. Press Enter to switch the status. X indicates that this parameter is enabled.
Translation
简体中文
Download
Updated: 2021-02-08

Document ID: EDOC1100088647

Views: 44607

Downloads: 252

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Share
Previous Next
Enterprise APP

Copyright © 2021 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :