Users Guide
2. To enable the TPM security use the following command, run
./omicli iv root/dcim/sysman { DCIM_BIOSService Name DCIM:BiosService
SystemCreationClassName DCIM_ComputerSystem SystemName <system name displayed in
DCIM_BIOSService class> CreationClassName DCIM_BIOSService } SetBIOSAttributes
{ AttributeName "Trusted Platform Module" AttributeValue “1” AuthorizationToken
“<password>”
3. Restart the system.
4. To activate the TPM, run
./omicli iv root/dcim/sysman { DCIM_BIOSService Name DCIM:BiosService
SystemCreationClassName DCIM_ComputerSystem SystemName <system name displayed in
DCIM_BIOSService class> CreationClassName DCIM_BIOSService } SetBIOSAttributes
{ AttributeName " Trusted Platform Module Activation" AttributeValue “2”
AuthorizationToken “<password>” }
5. Restart the system.
6. To reset BIOS password, run
./omicli iv root/dcim/sysman { DCIM_BIOSService Name DCIM:BiosService
SystemCreationClassName DCIM_ComputerSystem SystemName <system name displayed in
DCIM_BIOSService class> CreationClassName DCIM_BIOSService } SetBIOSAttributes
{ AttributeName "AdminPwd" AttributeValue “” AuthorizationToken “<password>” }
Setting BIOS attributes using WinRM
You can set BIOS attributes using the SetBIOSAttributes method. The procedure is explained below using a task of enabling the Trusted
Platform Module (TPM) as an example.
NOTE: Ensure the TPM option is cleared in the BIOS before following the procedure to enable the TPM.
To set the BIOS attributes using WinRM commands:
1. Get the selector set by enumerating the DCIM_BIOSService class. Run:
winrm e wsman/DCIM_BIOSService?__cimnamespace=root/dcim/sysman -auth:basic -r:https://
<system IP or system name>:<Port Number (5985/5986)> -username:<user name> -
password:<password> -skipCAcheck -skipCNcheck -encoding:utf-8 -returnType:epr
NOTE:
The selector set values (SystemName=<system name from DCIM_BIOSService class>winrm i
SetBIOSAttributes wsman/DCIM_BIOSService?SystemName=dt:
+SystemCreationClassName=DCIM_ComputerSystem+Name=DCIM:BiosService
+CreationClassName=DCIM_BIOSService+) are used for set operation in this example.
2. Set the BIOS password on the system if not set already using the following command:
winrm i SetBIOSAttributes http://schemas.dmtf.org/wbem/wscim/1/cim-schema/2/DCIM_BIOSService?
__cimnamespace=root/dcim/sysman+Name=DCIM:BiosService
+SystemCreationClassName=DCIM_ComputerSystem+SystemName=<system name from DCIM_BIOSService
class>+CreationClassName=DCIM_BIOSService -r:https://<system IP or system name>:5986 -u:<user
name> -password:<password> -auth:basic -skipCAcheck -skipCNcheck -encoding:utf-8
@{AttributeName="AdminPwd";AttributeValue="<Password>"}
3. Enable TPM security by running the following command:
winrm i SetBIOSAttributes "http://schemas.dmtf.org/wbem/wscim/1/cim-schema/2/
DCIM_BIOSService?__cimnamespace=root/dcim/sysman+Name=DCIM:BiosService
+SystemCreationClassName=DCIM_ComputerSystem+SystemName=<system name from DCIM_BIOSService
class>+CreationClassName=DCIM_BIOSService -r:https://<system IP or system name>:5986 -u:<user
name> -password:<password> -auth:basic -skipCAcheck -skipCNcheck -encoding:utf-8
@{AttributeName="Trusted Platform Module";AttributeValue="1";AuthorizationToken="<Admin
password>"}
4. Restart the system.
5. Activate the TPM using the following command:
winrm i SetBIOSAttributes "http://schemas.dmtf.org/wbem/wscim/1/cim-schema/2/
DCIM_BIOSService?__cimnamespace=root/dcim/sysman+Name=DCIM:BiosService
+SystemCreationClassName=DCIM_ComputerSystem+SystemName=<system name from DCIM_BIOSService
Using Dell Command | Monitor 10.2.1
17