White Papers
Table Of Contents
- Dell Trusted Device Installation and Administrator Guide v3.6
- Contents
- Introduction
- Requirements
- Download the software
- Verify the installation package
- Installation
- Uninstall Trusted Device
- BIOS Verification
- Image Capture
- BIOS Events & Indicators of Attack
- Security Risk Protection Score
- Intel ME Verification
- Integration
- Run the BIOS Verification Agent
- Results, troubleshooting, and remediation
"Certificate": {
"Path": "
/app/certs/test.pfx
",
"Password": “
Password@123
"
}
}
}
}
}
Move the appsettings.json file to the persistent directory after modifying the above values.
Configure the Trusted Device agent
The Trusted Device agent requires custom registry values to deliver data to the Event Repository. Create or modify the
following registry values to configure the Trusted Device agent for use with the Event Repository:
● HKLM\Software\Dell\DellTrustedDevice\Overrides
NOTE:
This registry key is protected from tampering at the Administrator level. Dell recommends implementing these
registry values before installing the Trusted Device agent on the target computer.
NOTE: The values specified in these registry entries must match the appsettings.json configuration entries.
Modify the following registry values per the configuration of your Event Repository.
● [HKLM\Software\Dell\DellTrustedDevice\Overrides\SiemIntegrationPolicy\Repositories\CollectorHttps\Registration]
"Tenant"="ExampleTenant"
"TenantApiKey"="ExampleTenantKey"
"TenantId"="5568165d-216a-4631-a115-80de74f294fd"
"Uri"="https://example.server.com:31235/siem/api/v1"
NOTE: This must be an HTTPS connection.
NOTE: The server example.server.com must be trusted. The hostname must match, the Trust Chain must be trusted,
and the date must be valid.
"RootCertificate"="ExampleCertificate"
● [HKLM\Software\Dell\DellTrustedDevice\Overrides\SiemIntegrationPolicy\Repositories\CollectorHttps\Connection]
"Uri"="https://example.server.com:31235/siem/api/v1"
NOTE: This must be an HTTPS connection.
Integration 29