Skip to main content

Activate/unlock the system and configure ThinkEdge security features

ThinkEdge SE455 V3 supports ThinkEdge unique security features. With the security features enabled, the system will enter System Lockdown Mode when tamper events occur, and encrypted data can not be accessed before the system is activated or unlocked. The status of ThinkEdge unique security features can be changed in Lenovo XClarity Controller.

Setup the security features

Complete the following steps to setup the security features:

  1. If the security LED of the server is blinking, the server is in System Lockdown Mode. Activate or unlock the system for operation. See Activate or unlock the system.

  2. Maintain backup of SED AK. See Manage the Self Encryption Drive Authentication Key (SED AK).

  3. Configure the security features in Lenovo XClarity Controller. See System Lockdown Mode to change the status of security features.

Note
The following sections contain the procedure of configuring ThinkEdge security features in Lenovo XClarity Controller web interface. For more information, see ThinkEdge Security.

Customer's responsibility:

  • Keep the Secure Activation Code (provided in flyer).

  • To use ThinkShield Edge Mobile Management App, prepare proper USB cable for mobile phone if necessary.

  • Maintain backup of SED AK. See Manage the Self Encryption Drive Authentication Key (SED AK).

    • Set and remember the password of SED AK backup file to restore SED AK in the future.

  • Engage IT department so they can help to claim or activate device when required.

  • Confirm if the SE455 V3 system is claimed by your organization. If not, work with IT department to claim the device.

  • Confirm the wireless (network) connectivity is working. Service technician cannot help examine the network connection of the device.

  • Move SE455 V3 system to a safe working place for service.

  • Place SE455 V3 system back to the working place after service.

  • Activate or unlock the system
    Being shipped, encountering tamper events, or receiving lockdown command from Lenovo management software, the server would be in System Lockdown Mode for security. Before operation, the server needs to be activated or unlocked to be able to boot up and go fully functional. Complete the steps in this topic to activate or unlock the system.
  • System Lockdown Mode
    See this topic to learn about System Lockdown Mode and related features in Lenovo XClarity Controller.
  • Manage the Self Encryption Drive Authentication Key (SED AK)
    For ThinkEdge SE455 V3 with SED installed, the SED AK can be managed in Lenovo XClarity Controller. After setting up the server or making changes to the configuration, backing up the SED AK is a must operation to prevent data loss in the hardware failure case.