Adding PC Policy

Introduction

The PC Policies feature in the HP Workforce Experience Platform (WXP), is used to standardize and automate device settings to ensure consistent security, performance, and user experience across your fleet of devices.

This guide provides a step-by-step guide to add a new PC policy.

Prerequisites

• You must have permissions to access the Remediations > Policies section.
• Know the type of policy you want to create (for example, BIOS Settings or BIOS Update).
• Understand the specific settings you want to configure.

Adding a New PC Policy

Creating a PC policy is a three-step process:

Step 1: Enter Basic Information

1. Log in to your Workforce Experience Platform. The Home page is displayed.
2. From the left menu of the platform, click Remediations > Policies. The Policies listing page is displayed, showing three tabs: PCs (default), Printer Policies, and Assignment.
3. On the PCs tab, click Add to create a new policy. The Add PC Policy page is displayed, showing Step 1 of 3.
4. Enter the following details:
   • Policy Name: Enter an intuitive name. For example, BIOS Enterprise Settings.
   • Policy Type: Choose one of the following from the dropdown:
     • BIOS Settings: Configure BIOS parameters.
     • BIOS Update: Manage BIOS version updates.
     • BIOS Authentication: Set BIOS passwords and authentication rules.
     • Driver Update: Manage driver installations or updates.
   • Description: Provide a brief description of the policy. For example, BIOS settings for HPE devices.
   • (Optional)Tags : Add one or more tags for classification, organization, or filtering.
   • Scope:
     • Global – Applies the policy across the organization.
     • Platform – Limits the policy to specific platforms.
5. Click Next to continue. The next page is displayed for policy configuration.

Step 2: Configure Policy Settings

1. In Step 2 of 3, use the search bar to enter keywords to find specific settings.
   For example, type "Secure" to view all settings with the word "Secure" in their name.
2. Browse the list of available settings.
3. For each setting you want to apply:
   • Select the checkbox next to the setting.
   • Use the toggle to enable or disable the setting.
4. Common settings include:
   • Secure Boot – Protects the boot process.
   • Transparent Secure Memory Encryption – Configures memory security.
   • Sure Start Secure Boot Keys Protection – Improves boot-level protection.
5. After configuring the required settings, click Next. Step 3 of 3 is displayed.

Step 3: Review and Finish

1. In Step 3 of 3, review the configuration before finalizing.
2. (Optional) Click Preview to see the potential impact on other policies.
3. Click Add to create the policy or Back to make changes.

Once created, the new policy appears in the PC Policies list with a default status of Unassigned.
To apply it, create a policy assignment.

You can also:

• Edit, clone, or delete the policy as needed.
• Monitor deployment status in the Activity section.

Best Practices

• Use clear, descriptive policy names.
• Write detailed descriptions explaining the purpose of each policy.
• Use tags to group policies by team, function, or priority.
• Test new policies on a small group of devices before wide deployment.
• Update policies regularly to maintain optimal security and performance.
• Align policies with organizational configuration standards.
• Document each policy’s purpose and scope in a shared knowledge base.

Troubleshooting

• If a new policy does not appear in the list, refresh the page and verify your access permissions.
• If a policy fails to apply, check the Activity section for error details.
• Confirm that all targeted devices meet the policy’s prerequisites.
• Contact your internal project team for assistance with complex configurations.

Related Resources

For additional information, refer to the following articles:

• Overview of Policies
• Overview of Remediation

Contact Us

For any assistance, create a support case or email [email protected].