Wondering how to get your HP ProLiant Gen9 Server up and running with improved security using industry standard interfaces? Each HP ProLiant Gen9 Server supports Unified Extensible Firmware Interface (UEFI). This industry standard is a set of interfaces between the system firmware, the operating system, and various components of the system firmware that deliver enhanced security benefits for the HP ProLiant Gen9 Servers. The HP ProLiant System BIOS is a UEFI solution based on the latest UEFI Specification revisions, currently 2.4. In addition, every HP ProLiant Gen9 Server is a UEFI Class 2 solution, supporting both Legacy boot and UEFI boot mode, providing users flexibility to switch between either mode. UEFI is also supported on the HP RESTful API, an industry recognized architectural style that enables server standardized interaction to configure at scale using a HTTPS Web protocol for Secure remote and local management.
- Pre-operating system boot networking configuration: –HP Extended Network Stack –iSCSI Software Initiator –Boot from HTTP URL
- New Shell Commands: -RestCLI -Partitions -Secboot - Secure Boot Key import/export
- AHS Download Capability via UEFI Shell or in the GUI
- RBSU Options -IPv6 DHCP Unique Identifier menu -Enable/Disable AES-NI Support -VLAN Configuration Support -Control number of drives to expose as boot targets per Storage Controller in UEFI Boot Mode
- Open Host Controller Interface (OHCI) Support in UEFI Boot Mode
- -Change to default FCoE Scan Policy -NVMe Option Support
Increase Server Security with UEFI Secure Boot
The Unified Extensible Firmware Interface (UEFI) provides a higher level of security by protecting against unauthorized Operating Systems and malware rootkit attacks, validating that only authenticated ROMs, pre-boot applications, and OS boot loaders that have been digitally signed are run.
It uses embedded public keys to verify UEFI drivers loaded from PCIe cards, drivers loaded from mass storage devices, pre-boot UEFI applications including firmware updates, and operating system UEFI boot loaders.
Performs safety checks to prevent inadvertently disabling Secure Boot in failure modes and logging security violations for auditing purposes.
Take Advantage of Embedded UEFI Shell and HP RESTful API for Scalable Configuration Deployment
The Unified Extensible Firmware Interface (UEFI) includes the UEFI Shell, a command line interface (CLI) application that allows scripting, file manipulation, obtaining system information, and running other UEFI applications plus more than ten HP specific commands for easier configuration.
UEFI Shell is based on the UEFI Shell Specification 2.1, with improvements for server configuration, hardware inventory, firmware updates, deployment, and Secure Boot key management.
The UEFI Shell includes a programming API to create your own UEFI applications, or you can configure UEFI with the scripting HP RESTful Interface Tool.
UEFI supports HP RESTful API, an industry recognized architectural style that enables server standardized interaction to configure at scale using a HTTPS Web protocol for Secure remote and local management.
Updated the HP RESTful API HP BIOS Attribute Registry resources to match the latest BIOS/Platform Configuration options.
Configure UEFI with Standard Boot Methods for an Enhanced and Flexible Network
The Unified Extensible Firmware Interface (UEFI) supports PXE boot for IPv6 networks allowing a unified network stack to PXE boot from any network controller while maintaining backward compatibility and continues to support IPv4 PXE.
Supports PXE Multicast boot for image deployment to multiple servers at the same time.
UEFI Extended Network Stack for IPv4 enhancements to overcome the limitations of PXE and TFTP by using more reliable TCP connections instead of UDP.
Modern booting from HTTP or FTP servers with a URL boot option that can be an EFI boot loader or a deployment ISO image.
New System Utilities BIOS/Platform Configuration (RBSU) IPv6 DHCP Unique Identifier menu that allows user to select how the UEFI BIOS will use the DHCP Unique Identifier (DUID) for IPv6 PXE Boot.
Interacting with UEFI Mode at Boot time for Better Manageability
The Unified Extensible Firmware Interface (UEFI) allows the use of greater than 2.2 TB drives.
Hard drives in UEFI use GPT (Globally Unique Identifier Partition Table) that provide far greater boot drive capacities, allowing you to use high-capacity drives for storage and system booting.
UEFI offers complete access to the system hardware and resources, allowing UEFI diagnostics and troubleshooting applications to be run before loading your operating system.
A 1 GB Embedded User Partition can be configured during the UEFI boot time for access to partition use via HP iLO4 v2.00 or later.
Configure the Embedded UEFI Shell to run startup script from local or virtual media, or from a network URL location.
- HP ProLiant UEFI - System Utilities
- HP ProLiant UEFI - Change system boot mode
- HP ProLiant UEFI - One Time Boot Menu
- HP ProLiant UEFI - How to change defaults
- HP ProLiant UEFI - Secure Boot