BIOS Settings - Lesson 3.5 | CompTIA A+ Core 1 Notes

Accessing the BIOS/UEFI

BIOS (Basic Input/Output System) or UEFI (Unified Extensible Firmware Interface) is low-level firmware that initializes hardware before the OS loads.
To access BIOS/UEFI, press a specific key or key combination during system startup (e.g., Delete, F1, F2, Ctrl+S, or Ctrl+Alt+S).
On virtual machines (VMs), hypervisors like Hyper-V, VMware Workstation, or VMware Fusion allow BIOS access by interrupting the boot process.
VirtualBox does not support virtual BIOS configuration; use a different hypervisor or a physical machine instead.
For online practice, search for UEFI BIOS Simulator to find interactive tools.
Windows Fast Startup (in Windows 10/11) prevents full shutdowns, blocking BIOS access. To disable it:
- Hold Shift while clicking Restart.
- Navigate to Settings > Update & Security > Recovery > Advanced Startup > Restart Now.
- Use MSConfig (System Configuration) to temporarily disable Fast Startup.
- Interrupt the boot process three times in a row to force a full restart.

Making incorrect changes in BIOS/UEFI can cause system instability or failure to boot.
Always document changes before modifying settings (e.g., write them down or take a photo).
Avoid random changes, especially for memory and CPU configurations, as they can affect system reliability.
Backup the current BIOS configuration before making changes to allow easy recovery.

Hardware Enablement/Disablement: BIOS controls hardware visibility to the OS. Disabling hardware in BIOS prevents the OS from detecting it.
Boot Order Configuration: Determines the sequence in which storage devices (e.g., SSDs, USB drives, network boot) are checked for an OS.
- Use the BIOS menu (e.g., Startup > Primary Boot Sequence) to prioritize boot devices.
- Example: Move a USB drive to the top to boot from it first.
USB Configuration: Security teams may disable USB storage to prevent unauthorized data transfers or malware infections.
- Example: The U.S. Department of Defense banned USB drives in 2008 after a malware incident.
- Configure USB settings under Devices > USB Setup (enable/disable ports or interfaces).
Fan and Cooling Controls: BIOS monitors temperature sensors and adjusts fan speeds for optimal cooling.
- Settings may include Best Performance (prioritizes cooling), Best Experience (minimizes noise), or Full Speed (constant maximum cooling).

Secure Boot: A UEFI feature that verifies the digital signature of the OS, bootloader, and BIOS updates to prevent malware execution.
- Requires a valid digital signature for the OS; older OS versions may not be supported.
Password Protection:
- User Password (Boot Password): Prevents system boot without the correct password.
- Supervisor Password (BIOS Password): Restricts access to BIOS settings to prevent unauthorized changes.
If passwords are lost, reset the BIOS configuration via:
- Motherboard jumpers (e.g., CLRTC for Clear Real-Time Clock RAM).
- Removing the CMOS battery (older systems only).

BIOS Firmware: Stored in flash memory on the motherboard, allowing updates without hardware replacement.
Configuration Storage: Modern systems use non-volatile flash memory; older systems relied on CMOS (volatile memory with battery backup).
Temperature Monitoring: BIOS provides real-time temperature readings for CPU, memory, and other components (e.g., 45°C CPU temperature).
Virtualization Support: Hardware-assisted virtualization (e.g., Intel VT or AMD-V) can be enabled in BIOS for improved VM performance.
- Located under Advanced > CPU Setup in most BIOS menus.