Hello David,

Few answers first:

• BIOS Update HNKBLi70, version 0065, 1/13/2021
• Not sure about the fan, but it seems to start
• Bought it end of January, this year

Tried the "3.7.4 Power Button Menu" from the manual:  after 3 seconds the color changes from blue to amber, but it does not show anything on screen and it does not respond to key strokes, it seems.

I had it running in Setup Mode for some days and I could not access the BIOS anymore immediately after I turned on Secure Boot in the BIOS and restarted.

I have moved the memory and one SSD to a new NUC10i3FNK I bought last Friday, so I cannot test anything at the moment as I need it for work. Maybe in the weekend, but I'd like to have an idea how to fix it first.

How about removing the BIOS Security Jumper?
I think I do not have much to lose if I had already removed the keys.

It's just that I'm not sure and I do not want to make it worse.

regards,

Hans

Intel is busy I guess.

Today I have moved one 16GB memory module from my new NUC10i3FNK to the NUC8i7HVK, so I can test again. Removed the SSD, because it is half of a RAID1 and the other half is in the new NUC.

Tried the BIOS Recovery using the Power Button Menu from the BIOS Update Instructions for Intel® NUC, i.e. not removing the Security Jumper, yet.

It responds by turning off and on the lights, including the power button. Not sure whether it is actually doing a BIOS replacement, so I didn't touch it for at least 5 minutes.

If I do not press F4 while in the Power Button Menu, the lights do not change: Skull, power button and green LED stay on. Then it also responds to Ctrl-Alt-Del: seems to reboot, after lights off/on the skull does not go back on, like in my BIOS settings.

Issue remains, nothing visible on the display.

Hans

Hi Hans,

I don't know which instruction you have used to perform BIOS Recovery from the Power Button Menu, however try mine (BTW, yesterday I've updated BIOS to version 0066, using this method). However, you need to have RAM installed. Before starting this procedure, verify that the Yellow BIOS Security Jumper is installed in NORMAL position (i.e. between pins 1-2, refer to page 46 in the Technical Product Specification) Follow those steps:

1. Prepare USB stick fully formatted to FAT32 (disable quick format option during format). Format your USB on Windows machine (rather than Linux or MAC). Save the Bios file HN0066.bio on this stick and insert it into front USB slot with amber color (NUC shall be OFF). You may use also one of the rear USB ports (do not use front blue USB port, since sometime the USB stick is not recognized during boot process).
2. Press and hold Power Button for about 3 seconds. Count 1001, 1002, 1003,1004. Release the Power Button. NUC should reboot into Power Button Menu. You should release the Power Button before 4-sec shut down override or when the Power Button LED changes color from blue to amber.
3. Press F4 and the recovery shall start (it can take up to 30 seconds for messages to appear on the screen).
4. When the recovery finishes, press on Power Button and hold it, until NUC switches OFF. Pull out the power cord. Remove the USB stick.
5. Replace the power cord and press Power Button to switch the computer to ON.
6. While you see the Intel NUC logo, enter Bios setting by pressing F2 during boot process.
Press F9(followed by "Y"), to set Bios to default settings. Press F10 (followed by "Y"), to save the settings and exit to O.S. Let the NUC fully reboot.
7. If before update, you have customized bios settings, you can enter again to Bios setting to change the necessary settings. 

Leon

Leon,

Thanks for replying . .  . but . . .

I have a few issues:

1. I do not have Windows (last version was NT 4.0, last millennium or so)
2. I'm a bit scared of trying a new BIOS because of many Linux users reporting it only boots Windows
3. Will this procedure restore the Intel Platform Key (and the others?)

On the first: I used an MBR partition table with a single FAT32-formatted partition. That's how I usually buy them, but I had all four already overwritten with Linux boot software.

Have you read my first post?
More specifically: Q2: Should I (temporarily) remove the BIOS Security Jumper ?

I was a bit worried because of the CAUTION in the manual, but it seems the way forward as I probably have removed the keys anyway.

From this detailed description of the Intel boot proces :

"In Hades Canyon NUC, there are two ways to change the PK: you can reset the PK with the BIOS security jumper inside the case and you can set the PK inside the Visual BIOS program by pressing F2 during boot."

I think I used (or tried to use) a third way using Debian efitools .

Not sure about the current state of the firmware, though.

Regards,

Hans

Hi Hans,

You asked how to perform BIOS Recovery from the Power Button Menu, so, I described this procedure in my post above. Since during this procedure the Security Jumper is installed, the PK are not affected. I've only asked you to verify that this jumper is installed in NORMAL position between pins 1-2. You may verify this without opening the NUC. Just click on F2 while you see the Intel NUC logo. If you enter BIOS, means that the jumper is in NORMAL position (rather than LOCKED).

If you will use USB stick formatted in Linux, probably the procedure will not work. 

"I'm a bit scared of trying a new BIOS because of many Linux users reporting it only boots Windows" I didn't hear about this problem in Hades Canyon. It was reported for NUC7PJYH, however it suppose to be fixed in the new release BIOS for this NUC, version 0060 .I don't have NUC7PJYH to test this, but it will be reported in the forum.

Leon

Hi Leon,

The Security Jumper is in the NORMAL position between pins 1-2.

I have not changed it and I could make changes in the BIOS (using F2) before I broke it.

My last change was, actually, (after replacing the keys with efitools) turning Secure Boot back on. Since then I do not see anything on the screen, anymore. No boot menu, no Power Button Menu, nothing.

Because I do not see anything on screen, I obviously cannot use that method to check the Security Jumper configuration.

Maye I'll buy another factory-formatted USB stick soon.

Or I can verify the USB stick on my new NUC10i3FNK. (when it gets an update)

Leon> Since during this procedure the Security Jumper is installed, the PK are not affected.

So I have to remove the Security Jumper.

If the missing Intel PK is the problem: Most likely, because that's the only relevant change before it broke.

thanks for helping thinking,

Hans

@DeividA_Intel 

Thanks for checking.

I've found a bit more detailed note in the BIOS Update Instructions for Intel® NUC with Intel® Visual BIOS pdf :

Note: BIOS recovery using the BIOS security jumper will clear Trusted Platform Module (TPM) keys,
Intel® Platform Trust Technology (Intel® PTT) keys, and High-bandwidth Digital Content Protection
(HDCP) keys. These keys will not be restored after the BIOS recovery.

The HDCP keys removal is new to me:  these were not mentioned in the Intel® NUC Kit NUC8i7HV
Technical Product Specification.

What do I lose here?

The NUC8i7HVK_TechProdSpec.pdf says:

1.6.2.6   High-bandwidth Digital Content Protection (HDCP)

HDCP is the technology for protecting high definition content against unauthorized copy or
interception between a source (computer, digital set top boxes, etc.) and the sink (panels,
monitor, and TVs). The PCH supports HDCP 1.4 and HDCP 2.2 for content protection over wired
displays using the Mini DisplayPort and HDMI 2.0. The Thunderbolt Type C based DisplayPort
configuration will support up to HDCP1.4.

Regards,

Hans

F7 method ?

@DeividA_Intel 

From the BIOS Update Readme:

4. During boot, when the F7 prompt is displayed, press F7 to enter the BIOS Flash Update screen.

But I do not see anything on screen, so I do not see how this can be done.

"BIOS Recovery using the Security Jumper" may work: i.e. F4 method using the Power Button Menu with the Security Jumper removed (i.e. in Configuration Mode).

Q: So I have to repeat my question once more: what do I lose here?

"High-bandwidth Digital Content Protection (HDCP) keys will not be restored", but what does it mean?
No Netflix or some other paid services ?

Hans

@DeividA_Intel 

Hello Deivid,

Thanks for replying.

From Deivid:

You won't lose any kind of information and/or features (HDCP), but any customization may be lost and you will need to adjust it.

If this is true, then Intel has to rewrite the BIOS Update Instructions for Intel® NUC with Intel® Visual BIOS pdf :

Note: BIOS recovery using the BIOS security jumper will clear Trusted Platform Module (TPM) keys,
Intel® Platform Trust Technology (Intel® PTT) keys, and High-bandwidth Digital Content Protection
(HDCP) keys. These keys will not be restored after the BIOS recovery.

( under BIOS Recovery by Security Jumper )

Not sure whether I need the HDCP keys and it's good to know I can use the RMA procedure if I need it.

I guess only Intel can restore them, if at all.

Regards,

Hans

In Configuration Mode, with the Security Jumper removed, the NUC8i7HVK goes into a 73 second cycle:

0:00 Power Off

0:04 Power On + Off

0:09 Power On

0:11 Display backlight on (Maybe this is the "Detected BIOS Security Jumper Removed" page?)

0:22 Display backlight off

1:13 Power Off -> next cycle

Nothing visible on the display other than the back light turning on and off.

I do not notice a difference between the USB stick inserted (on the yellow front port or one of the back ports) vs. no USB stick inserted, so I'll retry with a Windows-formatted USB stick as @LeonWaksman  suggested.

Hans