Operation Manual
Table7.Securitymenuitems(continued)
Menuitem
Submenuitem
Value
Comments
FlashBIOSUpdateby
End-Users
•Disabled
•Enabled
IfyouselectEnabled,alluserscanupdate
theUEFIBIOS.IfyouselectDisabled,
onlythepersonwhoknowsthesupervisor
passwordcanupdatetheUEFIBIOS.
UEFIBIOSUpdate
Option
SecureRollBack
Prevention
•Disabled(If
OSOptimized
Defaultsissetas
disabled.)
•Enabled(If
OSOptimized
Defaultsisas
enabled.)
IfyouselectDisabled,youcanflashtheolder
versionUEFIBIOS.
SecurityChip
Selection
•DiscreteTPM
•IntelPTT
IfyouselectDiscreteTPM,youcanusea
discreteTPMchipwithTPM1.2mode.Ifyou
selectIntelPTT,youcanuseIntelPlatform
Trustedtechnology(PTT)withTPM2.0mode.
Note:
IntelPTTcanbeusedwithWindows8.1or
lateroperatingsystem.
SecurityChip
•Active
•Inactive
•Disabled
IfyouselectActive,thesecuritychipis
functional.IfyouselectInactive,theSecurity
Chipoptionisvisible,butthesecuritychip
isnotfunctional.IfyouselectDisabled,
theSecurityChipoptionishiddenandthe
securitychipisnotfunctional.
SecurityReporting
Options
ThisoptionisavailablewhenSecurityChip
isactive.Itisusedtoenableordisablethe
followingSecurityReportingOptions:
•BIOSROMStringReporting(Windows7)
orUEFIROMStringReporting(Windows
8.1):BIOStextstring
•CMOSReporting:CMOSdata
•NVRAMReporting:Securitydatastored
intheAssetID
•SMBIOSReporting:SMBIOSdata
ClearSecurityChip
•Enter
Cleartheencryptionkey.
Note:Thisitemisdisplayedonlyifyouhave
selectedActivefortheSecurityChipoption.
IntelTXTFeature•Disabled
•Enabled
EnableordisabletheIntelTrustedExecution
Technology.
Note:Thisitemisdisplayedonlyifyouhave
selectedActivefortheSecurityChipoption.
PhysicalPresencefor
Provisioning
•Disabled
•Enabled
Enableordisabletheconfirmationmessage
whenyouchangethesettingsofthesecurity
chip.
SecurityChip
PhysicalPresencefor
Clear
•Disabled
•Enabled
Enableordisabletheconfirmationmessage
whenyouclearthesecuritychip.
102ThinkPadX1CarbonUserGuide