5 Replies Latest reply on Sep 11, 2017 6:14 PM by rguevara

    Secure Boot with Custom Platform Key

    wrannaman

      I am trying to lock down my NUC with secure boot that will only load a kernel signed by my own keys. Outside of signing the kernal and the bootloader, I am struggling with the NUC BIOS. 

       

      I am able to load KeyTool in the efi shell and load the KEK and DB keys but am unable to load the PK. ( Failed to update variable: (26) Security Violation)

       

      Has anyone had any luck saving their own private Platform Key to the bios ?

       

      I don't need to use KeyTool if there is another way to do this.

       

      Thanks!