Reference Guide

ManualsBrandsDell ManualsActive System ManagerOpenManage Software 8.1

2111

Arguments arg1 = device name

Detailed

Description

When the Secure Boot feature is enabled, the system BIOS authenticates each UEFI

driver against the Secure Boot policy. If a UEFI driver does not meet the policy

criteria, the system BIOS does not load or execute the UEFI driver and displays this

message at the end of POST. The Secure Boot policy consists of authorized and

unauthorized X.509 certificates; signed drivers must chain to an authorized

certificate. The policy may also authorize hash values of individual UEFI driver

images. Users can configure the Secure Boot feature and the Secure Boot policy in

F2 System Setup > System BIOS > Security Settings page.

Recommended

Response

Action

If the Secure Boot feature is not desired, disable it in System Setup > System BIOS >

Security Settings page. Otherwise, do the following: 1) Make sure the firmware on

the failing device is up-to-date. 2) If subsequent failures occur, review the Secure

Boot Policy Summary in System Setup > System BIOS > Security Settings page. The

device firmware must be authorized by a public key or hash value in the Authorized

Signature Database. The public key or hash value must not be present in the

Forbidden Signature Database.

Category Configuration (UEFI = UEFI Event)

Severity Severity 2 (Warning)

Filter

Visibility

IPMI

Alert

SNMP

Alert

Remote System

Log

Eventing

iDRAC

CMC

LC Log LCD OS Log Power

Off

Power

Cycle

Reset Chassis Event

Proxy

iDRAC ✔*

CMC

UEFI0073

Message Unable to boot arg1 because of the Secure Boot policy.

Arguments arg1 = Boot Option name

Detailed

Description

When the Secure Boot feature is enabled, the system BIOS authenticates each boot

option against the Secure Boot policy. If a boot option does not meet the policy

criteria, the system BIOS does not boot to the boot option and displays this

message. The Secure Boot policy consists of authorized and unauthorized X.509

certificates; signed boot images must chain to an authorized certificate. The policy

may also authorize hash values of individual boot images. Users can configure the

Secure Boot feature and the Secure Boot policy in System Setup > System BIOS >

Security Settings page.

Recommended

Response

Action

If the Secure Boot feature is not desired, disable it in System Setup > System BIOS >

Security Settings page. Otherwise, do the following: 1) review the Secure Boot

Policy Summary in F2 System Setup > System BIOS > Security Settings page. The

boot option must be authorized by a public key or hash value in the Authorized

2119