Unsolved
This post is more than 5 years old
1 Rookie
•
2 Posts
1
7038
September 27th, 2013 06:00
Unable to enroll my self-signed keys using "Replace from file" option of "Custom Mode Key Management" on OptiPlex 9010.
Unable to enroll my self-signed keys using "Replace from file" option of "Custom Mode Key Management" on OptiPlex 9010.
It gives error replacing PK/KEK/db key and fails with “Error replacing key. Please make sure that the new key is properly formatted with signature list and serialization headrers” error.
Query # 1- Is it possible to replace PK/KEK/db key with self-signed Openssl CA keys? If yes, please provide supported format details.
If not….
Query # 2- Is it possible to get access to Dell’s ‘test’ keys i.e. private key and public key(which will not give above error)?
Note- Self signed keys are generated using openssl util.
Any help will be greatly appreciated.
UefiNPreboot
1 Rookie
•
2 Posts
0
September 27th, 2013 06:00
FYI- I am trying to enroll my own keys for secure boot testing, because
I need to sign my .efi, enroll signer key in data base and run signed .efi to verify security.