Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
276 Views

How to install custom secure boot keys (PK, KEK, db)?

Can you provide instructions for installing custom secure boot keys (PK, KEK, db)? I have checked the user guide and TPS, as well as tried via the BIOS interface. I can clear the existing keys, but it's not obvious how to load my keys. Perhaps I place them on a USB drive with specific filenames?

 

Thanks

0 Kudos
5 Replies
Highlighted
Super User Retired Employee
188 Views

Good question! The BIOS Glossary talks about a selection that is used for reading the information from a file, but I am not seeing this selection exposed by any of the NUCs.

...S

0 Kudos
Highlighted
Moderator
188 Views

Hi MMill31,

 

I would recommend that you review the following documentation:

 

Frequently Asked Questions about Secure Boot

Deploying Secure Boot: Key Creation and Management

 

I am also attaching the "Signing UEFI Applications and Drivers for UEFI Secure Boot" white paper for your reference.

We provide the hardware needed for this implementation but this is more on the software/Operating System side (OEM/Microsoft*)

 

I hope this helps,

Ronny G

 

 

 

0 Kudos
Highlighted
188 Views

Hi Ronny, thanks for the reply. Sorry, but this is not what I'm asking. I am asking for specific instructions for loading custom secure boot keys into the NUC. You can use NUC8i7HVB as a proxy for the model number since I use many NUCs. Clearly the NUC BIOS intends to support this ability, but I have no idea how to actually load my custom PK, KEK, and db into the NUC.

 

Thanks for the help,

Mike

0 Kudos
Highlighted
Moderator
188 Views

Hi Mike,

 

I just chatted with Chris V. about this request and my understanding is that he is also working with you so we will contact you back as soon as possible.

 

Thanks,

Ronny G

0 Kudos
Highlighted
Beginner
184 Views

I would also be interested in knowing the outcome of this discussion.

0 Kudos