X220i ignores Predesktop authentication
Posted: Mon Jul 02, 2012 2:05 pm
I have enabled fingerprint-based authentication in my laptop. I can use my fingerprint reader to start the computer.
However, instead of the BIOS checking my fingerprint, I have win7 booting and checking my fingerprint (if I switched on the computer with my fingerprint, the reader seems to give an OK without me needing to give a print again).
Obviously, this is a massive hole in security. I need a BIOS-lock on my computer and HDD, not win7's attempt at it. Only a BIOS lock is adaqvately secure, as someone can bypass win7's password or the OS itself.
I am not carrying classified nuclear launch codes or anything like that, however I would like a secure computer. That means a BIOS password lock. Since I can turn on the computer with my fingerprint, it is obvious that the computer's BIOS has fingerprint authentication software in it (further evidenced by the fact that I can use my fingerprint to log into the BIOS setup).
I looked it up, and it appears that there is an option supposedly in the BIOS to allow this: Predesktop authentication. However, when I just checked my BIOS setup, this option is enabled! I am confused, why can't I get the BIOS to read my fingerprint instead of having the system boot up win7 and use that?
However, instead of the BIOS checking my fingerprint, I have win7 booting and checking my fingerprint (if I switched on the computer with my fingerprint, the reader seems to give an OK without me needing to give a print again).
Obviously, this is a massive hole in security. I need a BIOS-lock on my computer and HDD, not win7's attempt at it. Only a BIOS lock is adaqvately secure, as someone can bypass win7's password or the OS itself.
I am not carrying classified nuclear launch codes or anything like that, however I would like a secure computer. That means a BIOS password lock. Since I can turn on the computer with my fingerprint, it is obvious that the computer's BIOS has fingerprint authentication software in it (further evidenced by the fact that I can use my fingerprint to log into the BIOS setup).
I looked it up, and it appears that there is an option supposedly in the BIOS to allow this: Predesktop authentication. However, when I just checked my BIOS setup, this option is enabled! I am confused, why can't I get the BIOS to read my fingerprint instead of having the system boot up win7 and use that?