Forum Discussion
Dell BIOS configuration and firmware updates concern
Hello all,
I recently looked into managing BIOS settings for Dell devices enrolled in Intune.
My organization also manage drivers and firmware updates in Intune for these devices.
One of the requirements I was instructed to deploy is to enable BIOS Admin Password on the targeted devices.
While applying a password may increase security, my concern is that firmware updates will now fail, unless Intune can "know" the device's BIOS admin password.
My question is how I can ensure that firmware updates can still be pushed successfully to these devices even though BIOS admin password is enabled?
5 Replies
Hello drorambar if you have only DELL devices you could use BIOS profiles in Intune with Dell Commercial Framework.
Dell devices enrolled in Intune can use BIOS profile settings to configure BIOS passwords remotely. You can manage these settings through Intune configuration profiles.Configure them from the Intune administration center by creating a custom configuration profile for Dell BIOS settings.
Use the OMA-URI settings to define the BIOS password and provide it during firmware updates.
OMA-URI example: ./Vendor/MSFT/ClientOEMSettings/CustomUpdateSettings
Configure the password in the OMA-URI string and ensure that the profile automatically sends the password to the device.
Bios/Firmware updates deployed using Windows Update is using "UEFI capsule firmware updates" and they can be installed without providing a password if a password is set.
So to answer your question it depends on how you deploy Bios updates..Regards,
Jörgen- I manage firmware and drivers update using Intune, and to my knowledge, Intune manage drivers and firmware updates through Windows Updates.
So, my understanding is that your answer applies to my case. Is that correct?
