Manual
Table Of Contents
- Preface
- Chapter 1. Overview
- Chapter 2. Installation
- Chapter 3. Working with Client Security Solution
- Chapter 4. Working with ThinkVantage Fingerprint Software
- Chapter 5. Working with Lenovo Fingerprint Software
- Chapter 6. Best Practices
- Deployment examples for installing Client Security Solution
- Switching Client Security Solution modes
- Corporate Active Directory rollout
- Standalone Install for CD or script files
- System Update
- System Migration Assistant
- Generating a certificate using key generation in the TPM
- Using USB fingerprint keyboards with 2008 ThinkPad notebook computer models (R400/R500/T400/T500/W500/X200/X301)
- Appendix A. Special considerations for using the Lenovo Fingerprint Keyboard with some ThinkPad notebook models
- Appendix B. Synchronizing password in Client Security Solution after the Windows password is reset
- Appendix C. Using Client Security Solution on a reinstalled Windows operating system
- Appendix D. Using the TPM on ThinkPad notebook computers
- Appendix E. Notices
- Glossary
•Disabled
•Activated
•Deactivated
•Owned
•Notowned
/setstate:<state>setstheTPMstatustypeyouprefer.0representsdisabledanddeactivated.1represents
enabled.2representsactivated.4representsowned.Youcanusetheaddingfunction(thatis,bitwise
OR)tosetmultiplevalidstatus.
Forexample,
css_manage_vista_tpm.exe/verbose/setstate:0setstheTPMstatustobedisabledanddeactivated.
css_manage_vista_tpm.exe/verbose/setstate:1setstheTPMstatustobeenabled.
css_manage_vista_tpm.exe/verbose/setstate:2setstheTPMstatustobeactivated.
css_manage_vista_tpm.exe/verbose/setstate:3setstheTPMstatustobeenabledandactivated.
Note:
•ValidTPMstatustypesincludethefollowing:
–Enabled
–Disabled
–Activated
–Deactivated
–Enabledandactivated
–Disabledanddeactivated
•ValidTPMstatustransitionsincludethefollowing:
–Disabled->Enabled
–Disabled->Enabledandactivated
–Enabled->Disabled
–Enabled->Enabledandactivated
–Enabledandactivated->Disabled
–Enabledandactivated->Disabledanddeactivated
ActiveDirectorySupport
ActiveDirectoryisadirectoryservice.Thedirectoryiswhereinformationaboutusersandresourcesis
stored.Thedirectoryserviceallowsaccesssoyoucanmanipulatethoseresources.
ActiveDirectoryprovidesamechanismthatgivesadministratorstheabilitytomanagecomputers,groups,
users,domains,securitypolicies,andanytypeofuser-denedobjects.ThemechanismusedbyActive
DirectorytoaccomplishthisisknownasGroupPolicy.WithGroupPolicy,administratorsdenesettingsthat
canbeappliedtocomputersorusersinthedomain.
ThinkVantageTechnologyproductscurrentlyuseavarietyofmethodsforgatheringsettingsusedtocontrol
programsettings,includingreadingfromspecicapplication-denedregistryentries.
40ClientSecuritySolution8.3DeploymentGuide