The MEBx configuration program can be used to view and change the Intel Management Engine settings for the computer.



Similar documents
Intel Active Management Technology with System Defense Feature Quick Start Guide

vpro Setup and Configuration for the 8000 Elite Business PC with Intel vpro Processor Technology

Intel vpro Provisioning

Intel vpro Processor Technology Setup and Configuration for the HP Z210 Workstation

Intel Management Engine BIOS Extension (Intel MEBX) User s Guide

Configuring and Using AMT on TS140 and TS440

Out-of-Band Management Reference

Setting up and configuring Intel AMT in HP Business Notebooks, Desktops, and Workstations

System Area Manager. Remote Management

Setting up and configuring Intel AMT in HP Business Notebooks, Desktops, and Workstations

Realizing the Value of Intel vpro processor technology within Altiris Client Management Suite

AMT Implementation on a UTC RETAIL 3170 POS

Intel Desktop Boards DQ67SW, DQ67EP, DQ67OW

vpro Prerequisites and Trade-offs for the dc7700 Business PC with Intel vpro Technology

Intel vpro. Technology-based PCs SETUP & CONFIGURATION GUIDE FOR

Type Message Description Probable Cause Suggested Action. Fan in the system is not functioning or room temperature

Exploring the Remote Access Configuration Utility

Start Here Guide. INTEL ACTIVE MANAGEMENT TECHNOLOGY i (INTEL AMT) Start Here Guide (Intel AMT 9.0)

Intel Setup and Configuration Software (Intel SCS) User Guide. Version 9.0

F-SECURE MESSAGING SECURITY GATEWAY

Configuration Guide for Intel vpro Technology with Microsoft* ConfigMgr SP2

Gigabyte Management Console User s Guide (For ASPEED AST 2400 Chipset)

Intel AMT Configuration Utility. User Guide. Version 8.2

3.5 LAN HDD Enclosure User s Manual

Computer Setup (F10) Utility Guide Business PCs

MN-700 Base Station Configuration Guide

HP Compaq dc7800p Business PC with Intel vpro Processor Technology and Virtual Appliances

SNMP Web card. User s Manual. Management Software for Uninterruptible Power Supply Systems

Chapter 1 Configuring Internet Connectivity

Chapter 1 Installing the Gateway

Computer Setup (F10) Utility Guide HP Compaq 6000 Pro Business PCs

Steps for Basic Configuration

IPMI Configuration User Guide

It should be noted that the installer will delete any existing partitions on your disk in order to install the software required to use BLËSK.

Intel Setup and Configuration Software (Intel SCS)

IPMI Coniguration Guide

Intel Active Management Technology Integration with Microsoft Windows* Active Directory

BabyWare Imperial PC Software

Remote Supervisor Adapter II. User s Guide

Intel Entry Storage System SS4000-E

System Utilities. BIOS Setup Utility. Chapter 2. PhoenixBIOS Setup Utility Main Advanced Security Boot Exit. Information

Broadband Router ESG-103. User s Guide

Intel Setup and Configuration Software (Intel SCS) Release Notes. Version 9.0

Intel Setup and Configuration Software (Intel SCS) Scalability Guidelines. Version 10.0

ViPNet ThinClient 3.3. Quick Start

IP Power Stone 4000 User Manual

Creating a Gateway to Client VPN between Sidewinder G2 and a Mac OS X Client

Manual. IP Sensor and Watchdog IPSW2210. I P S W M a n u a l P a g e 1. Relay Output. Power input. 12VDC adapter LED Indicators. 2 Dry.

3.1 RS-232/422/485 Pinout:PORT1-4(RJ-45) RJ-45 RS-232 RS-422 RS-485 PIN1 TXD PIN2 RXD PIN3 GND PIN4 PIN5 T PIN6 T PIN7 R+ PIN8 R-

The following sections describe the Gateway configuration pages in the SBG1000 Setup Program.

Computer Setup User Guide

NNAS-D5 Quick Installation Guide

Use QNAP NAS for Backup

3.5 EXTERNAL NETWORK HDD. User s Manual

This chapter explains a preparation for the use of RemoteControlService.

Management Software. Web Browser User s Guide AT-S106. For the AT-GS950/48 Gigabit Ethernet Smart Switch. Version Rev.

Chapter 4 Management. Viewing the Activity Log

Chapter 8 Advanced Configuration

Command Line Interface User Guide for Intel Server Management Software

Cisco SPA Phones User Guide Bicom Systems

Quick Installation Guide

Intel Active Management Technology Embedded Host-based Configuration in Intelligent Systems

Dominion KX II-101-V2

User Guide. SUSIAccess. Remote Device Management

3.5 Mobile LAN Disk User Guide

NAS SERVER FOR EXTERNAL HDD

Wireless VoIP Phone User s Manual

User s Manual TCP/IP TO RS-232/422/485 CONVERTER. 1.1 Introduction. 1.2 Main features. Dynamic DNS

Chapter 8 Router and Network Management

SoundPoint IP/SoundStation IP Family Technical Bulletin TB Notice of Product Shipping Configuration Change - Update 1

Intel Management and Security Status Application

Half Bridge mode }These options are all found under Misc Configuration

HP BUSINESS NOTEBOOK PC F10 SETUP OVERVIEW

Release Notes. Pre-Installation Recommendations... 1 Platform Compatibility... 1 Known Issues... 2 Resolved Issues... 2 Troubleshooting...

BIOS Update Release Notes

Forcepoint Sidewinder, Virtual Appliance Evaluation for Desktop. Installation Guide 8.x. Revision A

TimeIPS Server. IPS256T Virtual Machine. Installation Guide

(1) Network Camera

SNMP-1 Configuration Guide

- 1 - SmartStor Cloud Web Admin Manual

How to Configure an Initial Installation of the VMware ESXi Hypervisor

Chapter 7 Managing Users, Authentication, and Certificates

SNMP Web Management. User s Manual For SNMP Web Card/Box

Chapter 6 Using Network Monitoring Tools

NeoGate TA Series Installation Guide

READYNAS INSTANT STORAGE. Quick Installation Guide

SSL VPN. Virtual Appliance Installation Guide. Virtual Private Networks

Quick Start Guide. WRV210 Wireless-G VPN Router with RangeBooster. Cisco Small Business

IP SENSOR 9216 USER MANUAL IP SENSOR 9216 USER MANUAL

Configuring Settings on the Cisco Unified Wireless IP Phone 7925G

Quick Installation Guide

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.

Cisco Expressway Basic Configuration

SonicWALL Global Management System Configuration Guide Standard Edition

DRO-210i LOAD BALANCING ROUTER. Review Package Contents

Networking Guide Redwood Manager 3.0 August 2013

User Manual. EtherUSB

RF550VPN and RF560VPN

Transcription:

Intel Desktop Boards Intel Management Engine BIOS Extension (Bx) The MEBx configuration program can be used to view and change the Intel Management Engine settings for the computer. NOTE: The MEBx is intended for use by advanced users. Making changes in the MEBx configuration program can cause system problems. The MEBx configuration should only be changed from default settings to address a specific need. To access the MEBx: 1. Upon booting the system, after the initial boot screen, the following message is displayed: Press <Ctrl-P> to enter MEBx Setup 2. Press Ctrl-P. The Main Menu in the MEBx contains the following options: Setting/Option Description / Purpose Opens the sub-menu for configuring the Intel Management Engine. Opens the sub-menu for configuring Intel Active Management Technology. This option appears only on Intel Desktop Boards that support, when configured with a vpro-compatible processor. For more information on, see http://support.intel.com/technology/platformtechnology/intel-amt/ Intel Remote Wake Technology Opens the sub-menu for configuring. This option appears only on Intel Desktop Boards that support but that do not have a vpro-compatible processor installed. Opens the sub-menu for configuring Intel Remote Wake Technology. This option appears only on Intel Desktop Boards that support Intel Remote Wake Technology. For more information on Intel Remote Wake Technology, see http://www.intel.com/technology/chipset/remotewake.htm Change Password password must be changed from the default password prior to gaining access to certain ME options. passwords must be between 8 and 32 characters long, have at least one upper case character, one lower case character, one number, and a special character (for example:!, @, #, $, %, ^, &, *). This option appears only on Intel Desktop Boards that support or Standard. The default password, which is the same on all newly deployed systems, is admin. When you first enter the Intel MEBx using the default password, you must change the password before you can use any Intel MEBx features. If you forget the MEBx password, you ll need to perform a BIOS Recovery and then reconfigure. The presence of menus and settings are dependent on your board model, hardware components installed, and the BIOS version.

Refer to the following charts for descriptions and options for the MEBx settings. MEBx Menu Setting Options Description / Purpose State Control The Intel Management Engine State Control (enable/disable) option provides a detach capability during field malfunction debug. You can use this option to disable the Intel Management Engine in order to isolate the Intel Management Engine subsystem from the main platform until the debugging process is complete. Intel Management Engine is not actually disabled via the Disable option. It is paused at a very early stage of the Intel Management Engine boot process so that the system has no traffic originating from the Intel Management Engine on any bus. This ensures that you can debug a system problem without interference from the Intel Management Engine. Firmware Local Update Qualifier Always Open Never Open Restricted Always Open - Intel Management Engine FW local update channel is always enabled. Boot cycle will not change enabled to disabled. Intel Management Engine FW Local Update option can be ignored. Never - Intel Management Engine FW local update is controlled by Intel ME FW Local Update Option (Enabled/Disabled). Boot cycle will change enabled to disabled. Restricted - Intel Management Engine FW local update channel is always enabled only if is in un-provision state. Boot cycle will not change enabled to disabled. Feature Control Feature Selection None ASF The options available for this setting depend on your system configuration. Feature Control Intel Quiet System Technology Enables or disables Intel Quiet System Technology (IQST). IQST is intelligent system fan speed control algorithms that use operating temperature ranges more efficiently to reduce perceived system noise by minimizing fan speed changes. Power Control ON in Host Sleep States Desktop: ON in S0 Desktop: On in S0, S3 Desktop: ON in S0, S3, S4-5 Desktop: ON in S0, ME Wake in S3 Desktop: ON in S0, ME Wake in S3, S4-5 Desktop: ON in S0, S3, S4-5, OFF After Power Loss Desktop: ON in S0, ME Wake in S3, S4-5, OFF After Power Loss The power package selected will determine when the Intel Management Engine is turned ON. The default power package turns off the Intel Management Engine in all Sx (S3/S4/S5) states when the system is on AC power.

MEBx Menu Setting Options Description / Purpose Host Name A host name can be assigned to the Intel AMT machine. This will be the hostname of the enabled system. If is set to DHCP, the host name MUST be identical to the operating system machine name. DHCP Enabled/Disabled Shows the current status of DHCP and allows you to enable or disable it. IP Subnet Mask Default Gateway Preferred DNS Alternate DNS Domain Name Enter the client system domain name. Provision Model Enterprise Small Business Intel Remote PC Assist Configures the provisioning mode. Enterprise mode supports both HTTP Digest and TLS security, however this mode requires a provisioning server to function. Small-Medium Business mode supports HTTP Digest only (no TLS support). Intel Remote PC Assist enables you to make a fast call for help and request remote technical assistance from a service provider if you encounter a problem with your PC, even when the OS, network card, or software is not functioning. For more information on Intel RPAT, see http://www.intel.com/support/services/rpat/. Current Provisioning Mode No changeable options Displays the current provisioning TLS Mode: None, PKI, or PSK. This configuration is only shown in Enterprise Provision Model. Provisioning Record No changeable options Displays the provision PSK/PKI record data of system. If the data has not been entered, the MEBX will display a message that states Provision Record not present. If the data is entered, the Provision record will display details of the provisioning. Provisioning Server IP Enter the address of the provisioning server in dot-decimal notation.

Provisioning Server FQDN Enter the Fully Qualified Domain Name (FQDN) of the provisioning server TLS PSK Set PID and PPS The PID is an 8 character alpha-numeric string in dashseparated format, e.g. ABCD-123K. The PPS is a 32 character alpha-numeric string in dashseparated format, e.g. EGET-GZFF-C6A6-ORRR-HQXP-C9JI- RJGB-KBS8. TLS PSK Delete PID and PPS Y / N Deletes the PID and PPS. This will un-provision Standard Remote Enable/Disable Disables or enables Remote. Manage Certificate Hashes Displays the list of hashes that are currently stored and the current status. You can add or delete cerificates or change the active status of the certificates. Set PKI DNS Suffix Sets the PKI DNS suffix of the provisioning server. Un-Provision Full Unprovision Partial Unprovision The option allows the IT-admin to reset configuration to factory defaults. There are three types of unprovision: Full Un-provision: This option resets all AMT settings to their default values. If a PID/PPS value is present, both values will be lost. The MEBX password will remain untouched. Partial Un-provision: This option resets all the settings to their default values, but will not change the PID/PPS, the Intel MEBx password, or the customized hash certificates. CMOS clear: This un-provision option is NOT available in the MEBX. This option will clear all values to their default values. If a PID/PPS is present, both values will be lost. The MEBX password will be reset to the default value (admin). To invoke this option, the user needs to clear the CMOS (ex. remove the coin battery). User Name and Password This option provides the user authentication for SOL/IDER session. If Kerberos is used, this option should be set to DISALBED. The user authentication is through Kerberos. If Kerberos is not used, you can choose to enable or disable user authentication on sessions. Serial Over LAN SOL allows console input/output on the managed client to be redirected to the management server console.

IDE Redirection IDE-R allows the managed client to be booted from remote disk images on the management console. Password Policy Default Password Only During Anytime There are two passwords for the firmware. The Intel MEBx password is the password that is entered when a user is physically at the system. The network password is the password that is entered when accessing an Intel ME enabled system through the network. Secure Firmware Update This option will allow the user to enable and disable secure firmware updates. Secure firmware updates require an administrator user name and password. If the administrator user name and password are not supplied, the firmware cannot be updated. When the secure firmware update feature is enabled, you can update the firmware using the secure method. Secure firmware updates will pass through the LMS driver. If secure and local firmware updates are disabled, enable them to allow the firmware updates. Set PRTC Enter the Protected Real Time Clock (PRTC) value in GMT (UTC) format (YYYY:MM:DD:HH:MM:SS). Valid date range is 1/1/2004 1/4/2021. Setting the PRTC value is used for virtually maintaining the PRTC during a power off (G3) state. This configuration will only be shown for Standard and Advanced Provisioning Model. Idle Timeout This setting is used to enable and disable Intel Management Engine Wake on LAN feature and define Intel Management Engine idle timeout in M1 state as well. Enter the value in minutes. MEBx Menu Setting Options Description / Purpose Host Name A host name can be assigned to the Intel AMT machine. This will be the hostname of the enabled system. If is set to DHCP, the host name MUST be identical to the operating system machine name. DHCP Enabled/Disabled Shows the current status of DHCP and allows you to enable or disable it. Alternate DNS Default Gateway Domain Name Enter the client system domain name. IP

Preferred DNS Subnet Mask Provision Model Enterprise Small Business Intel Remote PC Assist Configures the provisioning mode. Enterprise mode supports both HTTP Digest and TLS security, however this mode requires a provisioning server to function. Small-Medium Business mode supports HTTP Digest only (no TLS support). Intel Remote PC Assist enables you to make a fast call for help and request remote technical assistance from a service provider if you encounter a problem with your PC, even when the OS, network card, or software is not functioning. Current Provisioning Mode No changeable options Displays the current provisioning TLS Mode: None, PKI, or PSK. This configuration is only shown in Enterprise Provision Model. Provisioning Record No changeable options Displays the provision PSK/PKI record data of system. If the data has not been entered, the MEBX will display a message that states Provision Record not present. If the data is entered, the Provision record will display details of the provisioning. Provisioning Server IP Enter the address of the provisioning server in dot-decimal notation. Provisioning Server FQDN Enter the Fully Qualified Domain Name (FQDN) of the provisioning server TLS PSK Set PID and PPS The PID is an 8 character alpha-numeric string in dashseparated format, e.g. ABCD-123K. The PPS is a 32 character alpha-numeric string in dashseparated format, e.g. EGET-GZFF-C6A6-ORRR-HQXP-C9JI- RJGB-KBS8. TLS PSK Delete PID and PPS Y / N Deletes the PID and PPS. This will un-provision Standard

Remote Enable/Disable Disables or enables Remote. Manage Certificate Hashes Displays the list of hashes that are currently stored and the current status. You can add or delete certificates or change the active status of the certificates. Set PKI DNS Suffix Sets the PKI DNS suffix of the provisioning server. Un-Provision (reset Provisioning) Full Unprovision Partial Unprovision The option allows the IT-admin to reset configuration to factory defaults. There are three types of unprovision: Full Un-provision: This option resets all AMT settings to their default values. If a PID/PPS value is present, both values will be lost. The MEBX password will remain untouched. Partial Un-provision: This option resets all the settings to their default values, but will not change the PID/PPS, the Intel MEBx password, or the customized hash certificates. CMOS clear: This un-provision option is NOT available in the MEBX. This option will clear all values to their default values. If a PID/PPS is present, both values will be lost. The MEBX password will be reset to the default value (admin). To invoke this option, the user needs to clear the CMOS (ex. remove the coin battery). User Name and Password This option provides the user authentication for SOL/IDER session. If Kerberos is used, this option should be set to DISALBED. The user authentication is through Kerberos. If Kerberos is not used, you can choose to enable or disable user authentication on sessions. Serial Over LAN SOL allows console input/output on the managed client to be redirected to the management server console. IDE Redirection IDE-R allows the managed client to be booted from remote disk images on the management console. Password Policy Default Password Only During Anytime There are two passwords for the firmware. The Intel MEBx password is the password that is entered when a user is physically at the system. The network password is the password that is entered when accessing an Intel ME enabled system through the network.

Secure Firmware Update This option will allow the user to enable and disable secure firmware updates. Secure firmware updates require an administrator user name and password. If the administrator user name and password are not supplied, the firmware cannot be updated. When the secure firmware update feature is enabled, you can update the firmware using the secure method. Secure firmware updates will pass through the LMS driver. If secure and local firmware updates are disabled, enable them to allow the firmware updates. Set PRTC Enter the Protected Real Time Clock (PRTC) value in GMT (UTC) format (YYYY:MM:DD:HH:MM:SS). Valid date range is 1/1/2004 1/4/2021. Setting the PRTC value is used for virtually maintaining the PRTC during a power off (G3) state. This configuration will only be shown for Standard and Advanced Provisioning Model. Idle Timeout This setting is used to enable and disable Intel Management Engine Wake on LAN feature and define Intel Management Engine idle timeout in M1 state as well. Enter the value in minutes. Intel Remote Wake Technology MEBx Menu Setting Options Description / Purpose Intel Remote Wake Technology Intel Remote Wake Technology Support Enables or disables Intel Remote Wake Technology. Intel Remote Wake Technology Reset Password Resets the password for Intel Remote Wake Technology.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information