- Community Home
- >
- Software-Defined Infrastructure
- >
- HPE OneView
- >
- HP Smart Update Tools (SUT) and Bitlocker: best pr...
-
- Forums
-
Blogs
- Alliances
- Around the Storage Block
- Behind the scenes @ Labs
- HPE Careers
- HPE Storage Tech Insiders
- Infrastructure Insights
- Inspiring Progress
- Internet of Things (IoT)
- My Learning Certification
- OEM Solutions
- Servers: The Right Compute
- Shifting to Software-Defined
- Telecom IQ
- Transforming IT
- Infrastructure Solutions German
- L’Avenir de l’IT
- IT e Trasformazione Digitale
- Enterprise Topics
- ИТ для нового стиля бизнеса
- Blogs
-
Quick Links
- Community
- Getting Started
- FAQ
- Ranking Overview
- Rules of Participation
- Contact
- Email us
- Tell us what you think
- Information Libraries
- Integrated Systems
- Networking
- Servers
- Storage
- Other HPE Sites
- Support Center
- Enterprise.nxt
- Marketplace
- Aruba Airheads Community
-
Forums
-
Blogs
-
InformationEnglish
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
01-13-2016 05:47 AM
01-13-2016 05:47 AM
HP Smart Update Tools (SUT) and Bitlocker: best practice?
I am using HP OneView 2.0 and Smart Update Tools 1.0
How should Smart Update Tools (SUT) be configured on a Windows server with Bitlocker?
In the user guide of SUT nothing is written on Bitlocker.
When performing updates through the HP SUM GUI you get a warning when it detects a TPM, and the SUM User Guide clearly mentions what you should do if you have Bitlocker enabled.
In contrast, when you perform updates trough HP OneView with SUT you don’t get this TPM warning. I am aware of the fact that the OV admin is only responsible for assigning the SPP base line in the server profile, and that the OS admin is in control of how these updates should be deployed on the server by configuring the SUT.
But which SUT modes can be used without any impact when Bitlocker is enabled? The default mode is “Auto deploy mode” which automatically stages and installs the updates, but reboot is done manually. I suppose this mode is not recommended with Bitlocker because of the installation part.
So I would simply:
1) configure SUT in “Auto stage mode” which only automatically downloads the updates
2) suspend Bitlocker manually
3) initiate manually the installation of the updates via SUT + reboot (cmd: “hpsut /deployreboot”)
4) enable Bitlocker manually after reboot
Hewlett Packard Enterprise International
- Communities
- HPE Blogs and Forum
© Copyright 2019 Hewlett Packard Enterprise Development LP