×

Systems and methods for automatic generation and retrieval of an information handling system password

  • US 10,296,730 B2
  • Filed: 08/18/2014
  • Issued: 05/21/2019
  • Est. Priority Date: 08/18/2014
  • Status: Active Grant
First Claim
Patent Images

1. An information handling system comprising:

  • a processor;

    a network interface communicatively coupled to the processor and to a network; and

    a basic input/output system (BIOS) comprising processor executable BIOS instructions that, when executed, cause the processor to perform BIOS operations including;

    initializing one or more information handling resources of the information handling system;

    responsive to receiving, from a remote administrator via the network interface, a remote management request for an administrator password for the information handling system, determining whether the administrator password has been set previously;

    responsive to determining that the administrator password has been set previously, generating an error message;

    responsive to determining that the administrator password has not been previously set, performing password setting operations, comprising;

    causing the information handling system to restart;

    generating a random character string;

    sealing the random character string in cryptoprocessor memory and preserving a cryptoprocessor state as of the sealing, wherein the cryptoprocessor memory is accessible only to a cryptoprocessor of the information handling system wherein the cryptoprocessor state indicates a state of the cryptoprocessor; and

    setting the random character string as the administrator password in firmware; and

    after the random character string has been set as the administrator password, responding to receiving, during a portion of booting the information handling system prior to booting an operating system, a user request for the administrator password, by performing password revealing operations, comprising;

    responsive to determining that an aspect of the user request ensures that a user making the user request is physically present at the information handling system and that a current cryptoprocessor state matches the cryptoprocessor state as of the sealing, unsealing the administrator password from cryptoprocessor memory, storing the administrator password in system memory, anddisplaying the administrator password via a user interface display.

View all claims
  • 14 Assignments
Timeline View
Assignment View
    ×
    ×