Lifecycle Controller User's Guide

PDF

UEFI Secure Boot

The UEFI Secure Boot is a technology that secures the boot process by verifying if the drivers and operating system loaders are signed by the key that is authorized by the firmware. When enabled, Secure Boot makes sure that:

  • BIOS boot option is disabled.
  • Only UEFI-based operating systems are supported for operating system deployment in all management applications.
  • Only authenticated EFI images and operating system loaders are started from UEFI firmware.

You can enable or disable the Secure Boot attribute locally or remotely using Dell management applications. Lifecycle Controller supports deploying an operating system with the Secure Boot option only in the UEFI boot mode.

There are two BIOS attributes that are associated with Secure Boot:

  • Secure Boot—Displays if the Secure Boot is enabled or disabled.
  • Secure Boot Policy—Allows you to specify the policy or digital signature that BIOS uses to authenticate. The policy can be classified as:
    • Standard—BIOS uses the default set of certificates to validate the drivers and operating system loaders during the boot process.
    • Custom—BIOS uses the specific set of certificates that you import or delete from the standard certificates to validate the drivers and operating system loaders during the boot process.
    NOTE:The secure boot policy settings made on BIOS can also be changed on the Lifecycle Controller GUI.
NOTE: For more information on UEFI, go to uefi.org.

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\