Unsolved
1 Message
1
22435
Windows Update KB KB4535680 failed to install to Server 2016 PowerEdge R540
Windows Update KB KB4535680 failed to install to Server 2016 PowerEdge R540
Microsoft Advised
This security update makes improvements to Secure Boot DBX for the supported Windows versions listed in the "Applies to" section. Key changes include the following:
Windows devices that has Unified Extensible Firmware Interface (UEFI) based firmware can run with Secure Boot enabled. The Secure Boot Forbidden Signature Database (DBX) prevents UEFI modules from loading. This update adds modules to the DBX.
A security feature bypass vulnerability exists in secure boot. An attacker who successfully exploited the vulnerability might bypass secure boot and load untrusted software.
This security update addresses the vulnerability by adding the signatures of the known vulnerable UEFI modules to the DBX.
Issue |
Workaround |
Some original equipment manufacturer (OEM) firmware might not allow for the installation of this update. |
To resolve this issue, contact your firmware OEM. |
daviesjsteve
1 Message
0
March 10th, 2021 21:00
Thanks for the script! You saved another sleepless sysadmin night!
ITTechSolutions1
1 Message
0
March 27th, 2021 11:00
I was having the same problem with our new PER740 with Windows Server Standard 2019.
(1) I copied your script to notepad and saved it with the ps1 extension.
(2) Opened Windows Powershell ISE in administrator mode and opened the the newly created script.
(3) Ran the script and followed the prompts and BAM ... problem solved!!
jdsok
8 Posts
0
April 23rd, 2021 08:00
Same issue with Server 2019 on R440 and R6525. Script appears to work, but I haven't run a reboot cycle yet. Probably dumb question: how to remove that mountvol drive letter? (EDITED TO ADD: discovered it does happily vanish when I log out. Never mind...)
jtrevanne
1 Message
0
October 19th, 2021 02:00
In case this helps anyone, I finally managed to install the update by disabling secure boot in the BIOS, then re-enabling it after the update was installed.