Secure Boot Custom Policy
| Item | Description |
|---|---|
| Enroll Efi Image | Enrolls SHA256 hash of the selected EFI image binary into the DB (Authorized Signature Database). |
| Secure Boot variable | Displays PK (Platform Keys), KEK (Key Exchange Keys), DB (Authorized Signature Database), and DBX (Forbidden Signature Database). |
| Size | Displays number of key bytes. |
| Keys | Displays number of certificates. |
| Key Source | Displays certificate sources. The sources can be Factory Default, No Keys, Mixed, or Customized. |
| PK | Enrolls the PK or delete the existing PK. Note There is only one PK in the system. |
| KEK | Enrolls a KEK entry or delete the existing entry from the KEK. |
| DB | Enrolls a DB entry or delete the existing entry from the DB. |
| DBX | Enrolls a DBX entry or delete the existing entry from the DBX. |
Give documentation feedback