Infineon Security Platform Advanced Settings

Infineon Security Platform

previous page next page

Infineon Security Platform Solution - Settings Tool

Infineon Security Platform Advanced Settings

With this page you can configure all Security Platform Owner and policy settings.
Settings that can be changed are limited to the local computer.

The Infineon Security Platform policy settings are contained in the Infineon Security Platform policy template file.

Availability of page:

This page is only available, if the current user has administrative rights.
This page is not available in server mode.

Buttons:

Buttons for administration of system and user policies are not available in Windows editions not supporting Group Policy Management, e.g. Windows Home editions.
Buttons are disabled, if corresponding functions are not available in a certain Security Platform state.

The following table describes all advanced functions.

Button	Explanation
Change...	Click here to change the Security Platform Owner Password (see Change Owner Password). This feature is not available, if the Infineon Security Platform is disabled or not yet initialized. In server mode this feature is not available as the Security Platform gets automatically initialized if the client system is integrated into a Trust Domain with centralized management.
Configure...	Click here to configure the following features: Automatic Backup (includes Emergency Recovery) Password Reset Enhanced Authentication Dictionary Attack Defense Infineon Security Platform Initialization Wizard will be started. This feature is not available, if the Infineon Security Platform is disabled or not yet initialized. In server mode this feature is not available as Password Reset and Backup and Restore is handled by Trusted Computing Management Server. Note that the feature Dictionary Attack Defense is only available on Security Platforms with a Infineon Trusted Platform Module 1.2, if the policy Configure dictionary attack threshold is not configured.
Disable/Enable...	Click here to disable or enable the Security Platform. Depending on the current state of the Infineon Security Platform the respective operation can be performed. For this operation the Owner Password is required. Disable Security Platform: Applications designed to use the Security Platform will no longer have access to data protected by the Trusted Platform Module, including EFS protected data, the Personal Secure Drive and others. Access to protected data is restored once the Security Platform is re-enabled. On a system that supports BitLocker Drive Encryption (e.g. Windows Vista Enterprise or Ultimate), if you disable the Security Platform while BitLocker is on, the operating system will prompt you to enter the BitLocker password at system restart. Enable Security Platform in the BIOS: In certain platform states you need to enable the Security Platform explicitly in the BIOS. If a reboot is requested to make the enabling effective and the Security Platform is not enabled after the reboot, then please enable the Security Platform explicitly in the BIOS (see Enable Trusted Platform Module). This feature is not available, if the Infineon Security Platform is disabled in the BIOS. This feature is not available, if the Infineon Security Platform not yet initialized. In server mode this feature is not available because Owner based enable/disable of Trusted Platform Module is not possible in this mode.
Reset...	Click here to reset the dictionary attack defense level. The Security Platform Initialization Wizard SpTPMWz.exe is started with the command line parameter -resetattack. This button is only available on Security Platforms with a Trusted Platform Module 1.2. In server mode, this is the only allowed usage of Security Platform Initialization Wizard.
System...	Click here to administer the settings for the system policies. The Infineon Security Platform System Policy Administration will be started. Policies are not available in Windows editions not supporting Group Policy Management, e.g. Windows Home editions. In server mode this feature is not available as local administrator is not expected to configure and manage the policy settings. The policies are configured domain-wide by a domain administrator via Trusted Computing Management Server.
User...	Click here to administer the settings for the user policies. The Infineon Security Platform User Policy Administration will be started. Policies are not available in Windows Home editions. In server mode this feature is not available as local administrator is not expected to configure and manage the policy settings. The policies are configured domain-wide by a domain administrator via Trusted Computing Management Server.

previous page start next page