IC-OS UEFI Configuration — Gen-2 Dell

This runbook configures the BIOS/UEFI on a Gen-2 Dell server so that IC-OS can install and run correctly. It is the BIOS-side step of the Node Deployment Guide (Gen-2) — at section 9, "UEFI setup and boot menu", you should branch here, complete the steps below, then return to the deployment guide and continue to step 10.

[!WARNING] Do not enable the RAID BIOS setting. RAID will break IC-OS installation.

1. UEFI — Enter System Setup

1. Reboot or power on the server.
2. Watch for the blue screen with boot options in the top-left corner.
3. Press F2 a couple of times once the options are listed.
4. If the keypress is recognized, the screen highlights Entering System Setup.

2. UEFI — Check version

1. From System Setup, select System BIOS and press Enter.
2. From System BIOS, select System Information and press Enter.
3. Verify the System BIOS Version is at least 2.8.4.

[!WARNING] If the BIOS version is below 2.8.4, abort this configuration and update the BIOS↗ first.

1. Select Back to return to System BIOS.

3. UEFI — Processor Settings

1. From System BIOS, select Processor Settings and press Enter.
2. Set Logical Processor to Enabled.
3. Set Virtualization Technology to Enabled.
4. Set NUMA Nodes Per Socket to 0.
5. Set Secure Memory Encryption to Enabled.
6. Set Minimum SEV non-ES ASID to 253.
7. Set Secure Nested Paging to Enabled.
8. Set SNP Memory Coverage to Enabled.
9. Set Transparent Secure Memory Encryption to Disabled.
10. Select Back to return to System BIOS.

4. UEFI — Boot Settings

1. From System BIOS, select Boot Settings and press Enter.
2. Set Boot Mode to UEFI.
3. Select Back to return to System BIOS.

5. UEFI — Integrated Devices

1. From System BIOS, select Integrated Devices.
2. Set SR-IOV Global Enable to Enabled.
3. Select Back to return to System BIOS.

6. UEFI — System Security

1. From System BIOS, select System Security.
2. Set TPM Security to On.
3. Set TPM Hierarchy to Enabled.
4. Select TPM Advanced settings.
5. Set TPM2 Algorithm Selection to SHA256.

7. UEFI — Miscellaneous Settings

1. From System BIOS, select Miscellaneous Settings.
2. Set F1/F2 Prompt on Error to Disabled.
3. Select Back to return to System BIOS.
4. Select Finish and press Enter.
5. Select Yes to save the changes and press Enter.
6. Select OK and press Enter.
7. Confirm the exit and press Enter. The system will reboot.

[!WARNING] Do not unplug the IC-OS USB stick during this reboot.

8. Boot Manager — Enter Boot Manager

1. Watch for the blue screen with boot options in the top-left corner. Press F11 a couple of times once the options are listed.
2. If recognized, the screen highlights Entering Boot Manager.
3. From the Boot Manager, select One-shot UEFI Boot Menu and press Enter.
4. From the Boot Menu, select your USB device and press Enter.

Return to the deployment runbook

• If you are following the non-HSM path, return to Node Deployment Guide (Gen-2) at section 9, "UEFI setup and boot menu", and continue to step 10.
• If you are following the legacy HSM path, return to Node Deployment Guide (Gen-1, with HSM) at section 9 and continue to step 10.

Related

• Node Deployment Guide (Gen-2) — the full deployment runbook this configuration is part of.
• Node Provider Machine Hardware Guide — hardware specifications by generation.
• Troubleshooting Node Deployment Errors — what to do if installation fails after BIOS configuration.
• IC-OS UEFI Configuration — Gen-2 Supermicro — sibling configuration for Supermicro hardware.