Users Guide
responding, crashed, or lost power unexpectedly." The issue occurs only during a reboot and does not impact the security of
the data or the performance of the computer. [28795]
● Amended 12/2014 - Secure Boot is a Unified Extensible Firmware Interface (UEFI) protocol that Windows 8 and 8.1 users
can enable in the computer's BIOS to ensure that the computer boots using trusted firmware signed by the computer
manufacturer. The feature is not supported when the following conditions are met:
○ HCA with Dell Data Protection | Security Tools installed
○ HCA with Dell Data Protection | Encryption installed
○ HCA with Dell Data Protection | Security Tools and Dell Data Protection | Encryption installed
To upgrade to Windows 8 or 8.1 on a Dell computer with SED or HCA, Secure Boot cannot be enabled in BIOS. The
Secure Boot setting is disabled by default for computers shipping with Windows 7 or Windows 8/8.1 Downgrade Rights.
This setting should not be changed.
Instructions:
1. Turn on the power to your Dell computer. If the computer is already powered on, reboot it.
2. Press F2 or F12 continuously during boot until a message displays at the upper right of the screen that is similar to
"preparing to enter setup" (F2) or "preparing one-time boot menu" (F12). This launches the system BIOS.
3. In Setting > General > Boot Sequence, ensure that the Legacy Boot List Option is selected.
4. In Settings > General > Advanced Boot Options, ensure that the Enable Legacy Options ROMs check box is selected.
5. In Settings > Secure Boot > Secure Boot Enable, ensure that the Secure Boot Enable selection is Disabled.
6. Apply the changes.
7. Now that the computer BIOS has been changed to a legacy boot mode, the computer must be re-imaged.
[28790]
● When running Windows 7, a computer that is HCA encrypted may not boot in Windows Safe Mode. [28819]
● When using EMS Explorer, cutting and pasting a file does not remove the file from its original location. [28848]
● After an upgrade from v8.2 to v8.3, the v8.2 Dell Data Protection | Encryption installer remains on the computer. [28885]
● During an SDE encryption sweep, although the disk is only partially encrypted based on the progress of the sweep, the
Security Console Encryption screen shows the disk as Protected. [28888]
● Fingerprints and smart cards stop working after the Port Control System policy to disable USB ports is applied. Broadcom
USH hardware is a USB-attached device. When the policy to disable USB ports is applied, it prevents data transmission to
and from the Broadcom USH hardware, which prevents users from logging on with fingerprints or smart cards. The problem
can be resolved by applying a combination of policies that restrict access to USB external media by setting Windows
Portable Device and External Storage Device class policy to Read Only. This policy combination allows the Broadcom USH
hardware to function properly but prevents data from being transferred from the computer to external media such as USB
flash drives and smart phones. [28895]
Advanced Authentication
● Removing the USB Fingerprint reader without ejecting the device causes Dell ControlVault to fail. The issue occurs because
Windows handles the removal action of biometric devices incorrectly. To correct this issue, download and install the Hotfix
available at http://support.microsoft.com/kb/2913763. [27696]
● A contactless card may not be immediately recognized, because Windows does not load its driver. To work around this issue,
in Windows Device Manager, disable the smart card device. For more information, see http://support.microsoft.com/kb/
976832. [27981]
● On Dell Venue tablets, the touch keyboard is not automatically available at the Windows logon screen. To work around this
issue, touch the keyboard icon to display the touch keyboard. [28257]
● When the Password Manager option, Fill in logon data, is selected and credentials are enrolled with Password Manager, data
is populated into a logon screen but log on does not occur. [28502]
● With Windows 8.1, after a Password Manager logon is deleted in the Security Console, the link to the logon page remains in
the list of Password Manager logons. [28515]
● Password Manager is not available in Google Chrome until it is activated. To activate Password Manager in Google Chrome,
follow these steps:
1. In the Google Chrome Settings page, select Make Google Chrome my default browser.
2. Select Show advanced settings > Content settings > Disable individual plug-ins and then select Always allowed for
the Dell Data Protection | Security Tools Plug-in. Close the Plug-ins page.
3. In the Google Chrome Settings page, select Extensions and check the Enable box next to the Dell Data Protection |
Security Tools Extension.
4. Exit Google Chrome and re-launch.
52
Technical Advisories