Manuals+

Dell HTTPs Boot User's Guide

Chapter 1: Introduction to HTTPs Boot

The HTTPs Boot feature in Dell BIOS enables systems to download and install the operating system using a secure gateway. The Unified Extensible Firmware Interface (UEFI) network stack in BIOS settings must be enabled for this feature. Unlike Pre-boot Execution Environment (PXE) Boot which uses UDP and does not support Transport Layer Security (TLS), HTTPs Boot supports TLS for secure OS deployment. It functions with both wired and wireless networks, defaulting to wired if both are available. The HTTP(s) Boot settings are enabled by default and operate in two modes:

HTTP(s) Boot Feature Modes

[Description of Figure 1: Screenshot of Dell BIOS Setup showing the Connection page with HTTP(s) Boot Feature enabled in Auto Mode.]

[Description of Figure 2: Screenshot of Dell BIOS Setup showing the Connection page with HTTP(s) Boot Feature enabled in Manual Mode, with a sample boot URL entered.]

Chapter 2: Upload and Delete the CA Certificate

To establish a connection with the HTTPs Boot server, a Certificate Authority (CA) document must be uploaded. The certificate must be in .pem format, support X.509 with 2048-bit encryption, have a filename with a minimum of five characters including the extension, and be valid. ? NOTE: The time zone is not considered during certificate validation. Only one certificate can be supported at a time.

Upload the CA certificate

Prerequisites: The certificate must be available on an external storage USB drive connected to the system.

Steps:

  1. Turn on or restart the computer.
  2. Press F2 to enter BIOS Setup. ? NOTE: Continuously tap the F2 key as the system starts to access the BIOS Setup page.
  3. In the left pane, click Connection.
  4. Click Upload and select the certificate from the external storage drive. The certificate information (owner, thumbprint, validity) will be displayed.
  5. Verify the displayed information and click Yes.

[Description of Figure 3: Screenshot of the Certificate Upload confirmation window in Dell BIOS Setup.]

Results: The CA certificate is uploaded, and its thumbprint is displayed on the Connection page.

[Description of Figure 4: Screenshot of Dell BIOS Setup Connection page displaying the uploaded CA certificate thumbprint.]

Delete the CA certificate

About this task: The existing CA certificate must be deleted to upload a new one.

Steps:

  1. Turn on or restart your computer.
  2. Press F2 to enter BIOS Setup. ? NOTE: Continuously tap the F2 key as the system starts to access the BIOS Setup page.
  3. In the left pane, click Connection. The Connection page is displayed.
  4. Click Delete.

[Description of Figure 5: Screenshot of Dell BIOS Setup Connection page with the Delete button highlighted for removing the CA certificate.]

[Description of Figure 6: Screenshot of Dell BIOS Setup Connection page after CA certificate deletion, showing 'CA Certificate not provisioned'.]

Chapter 3: Launch HTTPs Boot

Prerequisites:

Steps:

  1. Turn on or restart your computer.
  2. Press the F12 key until the one-time boot menu is displayed. ? NOTE: If the operating system logo appears, restart the computer and try again. Continuously tap the F12 key as the system starts to access the one-time boot menu.
  3. Navigate to UEFI Boot Devices.

[Description of Figure 7: Screenshot of the One-Time Boot Menu in Dell BIOS, highlighting the 'UEFI Boot Devices' and 'UEFI HTTPs Boot' options.]

  1. Select UEFI HTTPs Boot. ? NOTE: If BIOS has an admin password, you will be prompted to enter it.
  2. Connect to a wired or wireless network. ? NOTE: If a wired network is available, it is used as the default interface. The following screen displays server domain information when no BIOS admin password is set or when it's removed.

Wired network connection

[Description of Figure 8: Diagram illustrating a wired network connection for HTTPs Boot, showing the system obtaining an IP address and downloading the NBP.]

Wireless network connection

Steps for wireless connection:

  1. Select a wireless network icon from the list of available networks. ? NOTE: The blue bar indicates signal strength, and a lock icon indicates a secure access point.
  2. Depending on the network type:
    • For a secured wireless network, enter the password and click Connect.
    • For an unsecured wireless network, click Connect.

[Description of Figure 9: Diagram illustrating a wireless network connection for HTTPs Boot, showing the system connecting to a wireless network and downloading the NBP.]

Chapter 4: HTTPs Boot default settings

HTTPs Boot settings can be reset to default values using one of the following methods:

Enable Load Defaults option

Steps:

  1. Turn on or restart your computer.
  2. Press F2 to enter BIOS Setup. ? NOTE: Continuously tap the F2 key as the system starts to access the BIOS Setup page.
  3. In the left pane, click Connection. The Connection page is displayed.
  4. Click LOAD DEFAULTS.
Table 1. HTTPs Boot settings default value
HTTPs Boot settings Default value
HTTP(s) Boot Enabled
HTTP(s) Boot Mode Auto
Enter Boot URL Null
CA Certificate Null

HTTPs Boot and admin password

HTTPs Boot modes can be modified when the BIOS admin password is not configured. When a password is configured, the HTTPs Boot options are disabled, and the password must be entered to modify them. Asterisks (*) are displayed in the manual boot URL for security.

[Description of Figure 10: Screenshot of Dell BIOS Setup Connection page showing HTTPs Boot Mode with password not configured.]

[Description of Figure 11: Screenshot of Dell BIOS Setup Connection page showing HTTPs Boot Mode with password protected, displaying asterisks for the boot URL.]

When the password is removed, all HTTPs Boot options revert to default values. The manual boot URL and certificate are deleted, and the HTTPs boot mode is set to Auto. For more information on BIOS admin passwords, refer to Dell's support documentation.

Chapter 5: Dell Command | Configure

Dell Command | Configure (DCC) is a software package that provides BIOS configuration capabilities for Dell client systems. IT administrators can use DCC to configure BIOS settings and create BIOS packages via its User Interface (UI) or Command Line Interface (CLI).

HTTPs Boot can be enabled or disabled using the DCC tool. The enable/disable options are password-protected; if password protection is enabled, the password must be entered to modify these attributes.

The HTTPs Boot feature operates in either Auto or Manual mode. By default, Auto Mode is selected, and the boot mode cannot be changed using the DCC tool.

For more information about DCC, consult the Dell Command Configure documents available at https://www.dell.com/support.

Chapter 6: Notifications

The following tables summarize different types of notifications displayed during HTTPs Boot operations.

Table 2. Notification messages

Notification message Reason Workaround
HTTP(s) Boot URL error
  • Incorrect URL format.
  • URL lacks file extension or has an incorrect extension (not .efi).
  • URL missing http:// or https:// prefix.
 Enter the correct URL.
Certificate error Error occurs during CA certificate upload. Upload the certificate again. Ensure the entered password is correct. If issues persist, try a different router.
Unable to join network. Check router and password. System unable to establish connection to a network or access point. Ensure the password entered is correct. If the issue persists, try connecting through a different router.
Manual URL is not set. Please boot to HTTPs Boot settings (press F2) and set the URL. The manual URL was not updated after selecting manual mode. Enter the URL manually in the BIOS Setup page.
Could not retrieve Network Boot Program (NBP) file size from HTTP server. Please check the network connection or contact network admin.
  • Attempting to connect to HTTPs Boot server but failing.
  • NBP file is unavailable.
  • TLS handshake fails for HTTPS URLs.
  • Certificate mismatch.
  • Packet timeouts.
  • Mismatch in NBP image type.
  • Check the NBP file location in the path specified in the DHCP start-up file URL.
  • Check the URL type for the certificate. Use an HTTP URL if the error is certificate-related.
Either Enable WLAN in BIOS setup options or Use Wired/Internet interface. Then restart to resume the operation.
  • No LAN cable connected, and WLAN option in BIOS Setup is not enabled for wireless network.
  • Wireless initialization fails.
  • Restart the process after enabling the WLAN option in BIOS Setup.
  • Connect using a wired network.
  • After updating the BIOS.
Failed to find IP address.
  • System unable to acquire IP address via DHCP.
  • No DHCP server connected to the network.
  • Check if the DHCP server provides the start-up file URL in the DHCP offer packet.
  • Select manual mode and enter the URL manually if DHCP server cannot be configured. Refer to "Introduction to HTTPs Boot" for more information.

Table 2. Notification messages (continued)

Notification message Reason Workaround
Access forbidden, only HTTPs connection allowed. Please check that you have a valid URL. CA certificate uploaded, but attempting to connect to HTTPs server with an HTTP URL. Enter a valid HTTPs URL.
No networks found. No WiFi networks available for connection. Check available WiFi networks and signal strength.
Failed to initialize network connection. System unable to configure both wired and wireless networks. For Wired connection: Ensure the system has LAN over Motherboard (LOM). Ensure a Type-C dock is connected for non-LOM systems.
Invalid URL address. Please boot to HTTPs Boot settings (press F2) and check that you have a valid URL. URL received from DHCP response is invalid. In the BIOS setup page, enter a valid URL in HTTPs Boot settings.

Chapter 7: References

For information on setting up or configuring HTTPs Boot on the server side, consult the following webpages:

Models: HTTPs Boot, HTTPs, Boot

File Info : application/pdf, 19 Pages, 1,011.52KB

PDF preview unavailable. Download the PDF instead.

https-ug-en-us

References

Antenna House PDF Output Library 7.1.1629

Related Documents

Preview Dell Command | Configure Version 4.x Command Line Interface Reference Guide
A comprehensive reference guide detailing the command-line interface options for Dell Command | Configure version 4.x, enabling IT administrators to manage and configure BIOS settings on Dell client systems.
Preview Dell Firmware Update Over The Air User's Guide
A user's guide detailing how to perform firmware updates over the air using Dell's BIOSConnect and Dell Command | Configure tools. Covers prerequisites, steps, network connection, and troubleshooting notifications.
Preview Dell Command | Endpoint Configure for Microsoft Intune Installation Guide
This guide provides detailed instructions for installing and deploying Dell Command | Endpoint Configure for Microsoft Intune (DCECMI), enabling IT professionals to manage and configure Dell system BIOS settings securely via Microsoft Intune.
Preview Dell Wyse 7040 Thin Client BIOS and BIOS Settings Update Procedure
A comprehensive guide detailing the procedures for updating the BIOS and BIOS settings on Dell Wyse 7040 Thin Clients running Windows 10 IoT Enterprise, covering methods via WDM Server, SCCM Server, and manual updates.
Preview Dell PowerEdge R940 BIOS and UEFI Reference Guide
A comprehensive reference guide for Dell PowerEdge R940 servers, detailing BIOS and UEFI settings, system configuration, memory, processor, security, and boot options.
Preview Dell Command | Integration Suite for System Center Version 6.3 Installation Guide
This guide provides information about software prerequisites and requirements to install and uninstall Dell Command | Integration Suite for System Center. Dell Command | Integration Suite for System Center is an easy-to-use GUI-based tool to configure and deploy Dell client systems, integrating directly into the Configuration Manager console.
Preview Dell Command | Endpoint Configure for Microsoft Intune Installation Guide
A comprehensive guide for installing and deploying Dell Command | Endpoint Configure for Microsoft Intune (DCECMI) for managing Dell BIOS settings via Microsoft Intune.
Preview Dell Command | Update v5.x Reference Guide: CLI Commands and Usage
This reference guide provides comprehensive details on Dell Command | Update version 5.x, focusing on its command-line interface (CLI) for managing system updates, drivers, BIOS, and firmware on Dell client systems. Learn about available commands, options, and error codes for efficient system administration.