. Token file for restoring the TPM configuration Default file name: SPEmRecToken.xml Default path: Removable media (FD, USB memory, etc.) . Key and certificate backup file Default file name: SpBackupArchive.xml Default path: None (Clicking Browse displays the \Documents\Security Platform window.) . PSD backup file Default file name: SpPSDBackup.fsb Default path: None (Clicking Browse displays the \Documents\Security Platform window.) Using Your VAIO Computer > Using the TPM n 81 N . Do not encrypt any one of the following password reset token or secret files. There will be no way to reset the password if you carelessly encrypt them. Sony assumes no liability for any troubles and damages arising out of your careless encryption of the following files and folders including them. . Password reset token file Default file name: SPPwdResetToken.xml Default path: Removable media (FD, USB memory, etc.) . Password reset secret file Default file name: SPPwdResetSecret.xml Default path: Removable media (FD, USB memory, etc.) Using Your VAIO Computer > Using the TPM n 82 N Configuring the TPM To use the embedded TPM, you need to: 1 Enable the TPM in the BIOS setup screen. 2 Install the Infineon TPM Professional Package. 3 Initialize and configure the TPM. To enable the TPM in the BIOS setup screen 1 Turn on your computer. 2 Press the F2 key when the VAIO logo appears. The BIOS setup screen appears. If not, restart the computer and press the F2 key several times when the VAIO logo appears. 3 Press the < or , key to select the Security tab, the M or m key to select Change TPM State, and then the Enter key. 4 Press the M or m key to select Enable and then the Enter key. 5 Press the < or , key to select Exit, select Exit Setup, and then press the Enter key. 6 After your system restarts, select Execute in the confirmation window and then press the Enter key. . You can also disable the TPM and clear the TPM configuration in the BIOS setup screen. ! Before enabling the TPM, be sure to set the power-on and hard disk passwords to protect against unauthorized modification of the TPM configuration. If the TPM is enabled, it will take longer before the VAIO logo appears due to security checks at computer startup. You will not be able to access any TPM-protected data if you clear the TPM ownership. Before clearing the TPM configuration, be sure to make backup copies of the TPM-protected data. Using Your VAIO Computer > Using the TPM n 83 N To install the Infineon TPM Professional Package Read the Readme.txt in the C:\Infineon\Readme folder. Then, double-click setup.exe in the C:\Infineon folder to install the package. To install this package, you must have administrative rights on the computer. ! You need to set a few passwords while installing the Infineon TPM Professional Package. Without these passwords, you will not be able to restore any TPM-protected data or backup files. Be sure to write down the passwords and keep them safe and private from other people. To initialize and configure the TPM See the on-screen documentation for detailed information. To open the documentation, click Start, All Programs, Infineon Security Platform Solution, and Help. ! The maintenance and management of TPM-protected data must be carried out at your own risk. Sony assumes no liability for any defects arising out of your data maintenance and management. Using Your VAIO Computer > Using the TPM n 84 N Using BitLocker Drive Encryption with the TPM BitLocker Drive Encryption is a data encryption feature that is available on models with Windows Vista Ultimate. Enabling BitLocker Drive Encryption in conjunction with the TPM encrypts all data on the built-in storage device. For detailed information on how to use and configure BitLocker Drive Encryption, see Windows Help and Support. See the specifications to find out about the configuration of your computer. Notes on using BitLocker Drive Encryption . Be sure to initialize the TPM with the Infineon TPM Professional Package before enabling BitLocker Drive Encryption. If you enable it without initializing the TPM, a TPM owner password is not generated, so you will not be able to configure the Infineon TPM Professional Package. . The Infineon TPM Professional Package does not make a backup copy of a file (recovery password) for BitLocker Drive Encryption. . An additional BitLocker system partition (S drive) has been pre-configured. This system partition uses 1.5 GB of your total built-in storage device volume. . You must enable the TPM in the BIOS setup screen in order to turn on BitLocker Drive Encryption. . Do not encrypt data on a storage device (such as a USB flash memory device) on which a recovery key is stored using BitLocker Drive Encryption. Using Your VAIO Computer > Using the TPM n 85 N To unlock the encrypted data with a recovery key stored on a USB flash memory device To unlock the encrypted data with a recovery key stored on a USB flash memory device, your system needs ...