Yea, still no update, i will try tommorow again. I had already, my mb is ASRock b760 pro rs with bios version 13.01.
Those two commands run a task that was pre-loaded on your computer by a Windows update. The task downloads the necessary keys as it runs. If your Windows isn't fully up-to-date it can't run, or if the repository isn't available to you I don't imagine it will run correctly or completely.
support.microsoft.com
So after that i should i get windows update? And what Windows version should i getThose two commands run a task that was pre-loaded on your computer by a Windows update. The task downloads the necessary keys as it runs. If your Windows isn't fully up-to-date it won't run, or if the repository isn't available to you, I don't imagine it will run correctly or completely.
Check event viewer for any of the Event Codes in the below document to see some clues for what might have happened.
Secure Boot DB and DBX variable update events - Microsoft Support
Win11 24h2 or 25h2 i believe.
Okay i will try again. What if my motherboard wont update that? I can do it by Myself yea?
There's a couple ways I know of to update keys. One depends on your BIOS providing the capability to append a key into the DB variable, the other is to use MOSBY.
I already asked on Reddit ASRock and they said that my BIOS is already updated with that all but i dont see that keys already missing?
Then Asrock didn't provide the 2023 OpROM key for some reason. Neither did Gigabyte for my motherboard.... but MSI did for my son's motherboard. Strange why they'd do that, I guess they don't figure their customers plan on running any expansion cards that need it.
Yea i need secure boot for some games. Strange thing is that they told me already they done that
If you think you need the key then go get MOSBY and install all the keys. You'll also close a recognized potential back-door security vulnerability at the same time by creating a PK key that's unique to your computer. MOSBY doesn't install a 2023 CA signed boot manager but Windows will when it's ready for that with an update; the boot manager goes into the EFI boot partition not firmware.
I'd rather wait for Microsoft to add it themselves. I hope they'll add it in 2026. Could you provide a link to the Microsoft page where I can download it?
Be sure to stay running in Secure Boot mode, and also allow diagnostics reporting so they will be able to.
github.com
Thank you very much! I should import these three files in the BIOS, right? Is there any guide for that? I’m new to these things, but I like to have everything done perfectly.Be sure to stay running in Secure Boot mode, and also allow diagnostics reporting so they will be able to.
I think your motherboard is for an Intel processor, so this would be the location for the signed OpROM key:
secureboot_objects/PostSignedObjects/Optional/DB/x86 at main · microsoft/secureboot_objects
Secure boot objects recommended by Microsoft. Contribute to microsoft/secureboot_objects development by creating an account on GitHub.
Just the DBupdateOROM2023.bin object.
Already done, thats all yea? So i dont need to do anything else i mean when these keys expire
All there then.
None I know of. I don't find there to be a good reason for me to do it.
Okay, thank you. So rn i shouldnt get that error in event viewer yea?
