Cysio's Blog

A screenshot of the command output from "sudo sbctl status" on my machine. The output is as follows: Place your finger on the fingerprint reader Installed: ✓ sbctl is installed Owner GUID: [redacted] Setup Mode: ✓ Disabled Secure Boot: ✓ Enabled Vendor Keys: builtin-db builtin-KEK

Small caveat when setting up Secure Boot on an Intel Ultra 1 Framework Laptop 13 on Arch Linux

by

Cysio
in , , ,

Yeah, this one is quite specific but it took me quite a while to find this. So, the steps are as follows:

  1. Go to the Secure Boot management menu on boot up (F2 before the system is booted).
  2. Don’t reset Secure Boot.
  3. Instead, manually delete all keys from PK, KEX and DB. Don’t touch DBX.
  4. Proceed with sbctl as per Arch Wiki.

Cysio
Cysio
@[email protected]

He/him/his. Casual and professional autistic programmer cisbi homoromantic guy. A furry (and a dogcat).

Mostly posts in English, czasem też po polsku.

“”Minors dni” dni” dni. I might freely post about adult topics here (and this doesn’t just mean the sex stuff).

pfp by https://meow.social/@Sjru

4 posts
3 followers

Normal comments are disabled. To comment on this post, copy its URL to your favorite Fediverse app.

Comments

One response to “Small caveat when setting up Secure Boot on an Intel Ultra 1 Framework Laptop 13 on Arch Linux”

  1. Cysio :verified_gay:​ Avatar
    Cysio :verified_gay:​

    @Cysio aaand there is the asterisk of shame because I forgor 💀 about the screenshot