Secure Boot violation message.


zooburner

zooburner

I really don't burn zoos !
Member
Local time
9:33 PM
Posts
102
OS
Windows 11
Hi there,

For many years i have used a program called 'Parted Magic' it's a boot USB with some great tools one that allows you safe erase a SSD drive (without writing all zero's etc) it's worked fine for years, till today i got this after i had selected it from the boot options (see image)

boot-error.gif

I've not made any changes to my BIOS settings and to be on the safe side re-imaged on a different USB parted magic boot USB, with the same results.
My Macrium boot USB boots fine without this, and if I press the OK it just boots into the Parted magic USB anyway.

I should also point out that it boots into windows fine just like it always has.
 

My Computer My Computer

At a glance

Windows 11Intel(R) Core(TM) i7-14700F (2.10 to 5.7 GHz)...32 GB Corsair Vengeance DDR5Nvidia 5060Ti 16GB
OS
Windows 11
Computer type
PC/Desktop
Manufacturer/Model
Scan
CPU
Intel(R) Core(TM) i7-14700F (2.10 to 5.7 GHz) 20 cores
Motherboard
ASUS Prime H610M-A WiFi D5
Memory
32 GB Corsair Vengeance DDR5
Graphics Card(s)
Nvidia 5060Ti 16GB
Sound Card
Onboard / Realtek
Monitor(s) Displays
BENQ GL2450
Screen Resolution
1920x1080
Hard Drives
1TB Cricial P310 (Heatsink) M.2
1 x Crucial SSD 480gb
1 x Crucial SSD 1TB
PSU
Corsair 650 w
Case
Coolmaster
Cooling
Scan Pro Glacier Liquid Cooling
Keyboard
HP keyboard and mouse combo
Mouse
HP keyboard and mouse combo
Internet Speed
900mbs
Browser
Chrome
Antivirus
Microsoft
Open the Command Prompt with administrative privileges and execute the following commands one at a time.


Code: 
Dism /online /cleanup-image /restorehealth



Sfc /scannow
 

My Computer My Computer

At a glance

Windows 11AMD Ryzen 7 5700GMicron Technology DDR4-3200 16GBNVIDIA GeForce RTX 3060
OS
Windows 11
Computer type
PC/Desktop
Manufacturer/Model
HP Pavilion
CPU
AMD Ryzen 7 5700G
Motherboard
Erica6
Memory
Micron Technology DDR4-3200 16GB
Graphics Card(s)
NVIDIA GeForce RTX 3060
Sound Card
Realtek ALC671
Monitor(s) Displays
Samsung SyncMaster U28E590
Screen Resolution
3840 x 2160
Hard Drives
SAMSUNG MZVLQ1T0HALB-000H1
FreeBooter said:
Open the Command Prompt with administrative privileges and execute the following commands one at a time.


Code: 
Dism /online /cleanup-image /restorehealth



Sfc /scannow
Click to expand...

Hi there and thanks for the reply

Ran restorehealth which completed succesfully

scannow found no problems.

Though is this relevant as this is happening prior to windows boot up ?
 

My Computer My Computer

At a glance

Windows 11Intel(R) Core(TM) i7-14700F (2.10 to 5.7 GHz)...32 GB Corsair Vengeance DDR5Nvidia 5060Ti 16GB
OS
Windows 11
Computer type
PC/Desktop
Manufacturer/Model
Scan
CPU
Intel(R) Core(TM) i7-14700F (2.10 to 5.7 GHz) 20 cores
Motherboard
ASUS Prime H610M-A WiFi D5
Memory
32 GB Corsair Vengeance DDR5
Graphics Card(s)
Nvidia 5060Ti 16GB
Sound Card
Onboard / Realtek
Monitor(s) Displays
BENQ GL2450
Screen Resolution
1920x1080
Hard Drives
1TB Cricial P310 (Heatsink) M.2
1 x Crucial SSD 480gb
1 x Crucial SSD 1TB
PSU
Corsair 650 w
Case
Coolmaster
Cooling
Scan Pro Glacier Liquid Cooling
Keyboard
HP keyboard and mouse combo
Mouse
HP keyboard and mouse combo
Internet Speed
900mbs
Browser
Chrome
Antivirus
Microsoft
The boot files if they get modified or corrupted can cause error message.

First developed by Intel, Secure Boot performs two tasks when a PC is switched on and before the OS loads. First, it verifies that the motherboard firmware is digitally signed, which helps reduce the risk of rootkits, which will modify the firmware and, thus, corrupt the signature.

Secure Boot then queries the digital signature of the OS in the bootloader to see if it matches a cryptographic signature that’s stored within the UEFI firmware. If both signatures match, the OS is permitted to load. If they don’t, Secure Boot concludes that the bootloader has been tampered with and will prevent the OS from starting.

Upgrade UEFI firmware from website of the manufacturer of your computer or motherboard.
 

My Computer My Computer

At a glance

Windows 11AMD Ryzen 7 5700GMicron Technology DDR4-3200 16GBNVIDIA GeForce RTX 3060
OS
Windows 11
Computer type
PC/Desktop
Manufacturer/Model
HP Pavilion
CPU
AMD Ryzen 7 5700G
Motherboard
Erica6
Memory
Micron Technology DDR4-3200 16GB
Graphics Card(s)
NVIDIA GeForce RTX 3060
Sound Card
Realtek ALC671
Monitor(s) Displays
Samsung SyncMaster U28E590
Screen Resolution
3840 x 2160
Hard Drives
SAMSUNG MZVLQ1T0HALB-000H1
FreeBooter said:
The boot files if they get modified or corrupted can cause error message.

First developed by Intel, Secure Boot performs two tasks when a PC is switched on and before the OS loads. First, it verifies that the motherboard firmware is digitally signed, which helps reduce the risk of rootkits, which will modify the firmware and, thus, corrupt the signature.

Secure Boot then queries the digital signature of the OS in the bootloader to see if it matches a cryptographic signature that’s stored within the UEFI firmware. If both signatures match, the OS is permitted to load. If they don’t, Secure Boot concludes that the bootloader has been tampered with and will prevent the OS from starting.

Upgrade UEFI firmware from website of the manufacturer of your computer or motherboard.
Click to expand...

Thanks for that it's interesting, windows boots just fine without an error showing up, and has always done so.

I'm more troubleshooting why when I use the boot menu to boot from this USB (that never used to show it) now does.
 

My Computer My Computer

At a glance

Windows 11Intel(R) Core(TM) i7-14700F (2.10 to 5.7 GHz)...32 GB Corsair Vengeance DDR5Nvidia 5060Ti 16GB
OS
Windows 11
Computer type
PC/Desktop
Manufacturer/Model
Scan
CPU
Intel(R) Core(TM) i7-14700F (2.10 to 5.7 GHz) 20 cores
Motherboard
ASUS Prime H610M-A WiFi D5
Memory
32 GB Corsair Vengeance DDR5
Graphics Card(s)
Nvidia 5060Ti 16GB
Sound Card
Onboard / Realtek
Monitor(s) Displays
BENQ GL2450
Screen Resolution
1920x1080
Hard Drives
1TB Cricial P310 (Heatsink) M.2
1 x Crucial SSD 480gb
1 x Crucial SSD 1TB
PSU
Corsair 650 w
Case
Coolmaster
Cooling
Scan Pro Glacier Liquid Cooling
Keyboard
HP keyboard and mouse combo
Mouse
HP keyboard and mouse combo
Internet Speed
900mbs
Browser
Chrome
Antivirus
Microsoft
zooburner said:
...why when I use the boot menu to boot from this USB (that never used to show it) now does.
Click to expand...
As FreeBooter explained....
FreeBooter said:
Secure Boot then queries the digital signature of the OS in the bootloader to see if it matches a cryptographic signature that’s stored within the UEFI firmware.
Click to expand...

For many years i have used a program called 'Parted Magic'....
Click to expand...
If it's that old, then it is entirely possible that the key used for 'Parted Magic' has just passed its expiry date.

openssl does not permit creating a certificate without an expiration date....
Click to expand...
 

My Computers My Computers

System One System Two Other systems

  • At a glance

    Windows 11 HomeAMD Athlon Silver 3050U8GBRadeon Graphics
    OS
    Windows 11 Home
    Computer type
    Laptop
    Manufacturer/Model
    Acer Aspire 3 A315-23-R9VY
    CPU
    AMD Athlon Silver 3050U
    Memory
    8GB
    Graphics Card(s)
    Radeon Graphics
    Monitor(s) Displays
    laptop screen
    Screen Resolution
    1366x768 native resolution, up to 2560x1440 with Radeon Virtual Super Resolution
    Hard Drives
    1TB Samsung EVO 870 SSD (from April 2026: 250GB EVO 850)
    Internet Speed
    150 Mbps
    Browser
    Edge, Firefox
    Antivirus
    Defender
    Other Info
    fully 'Windows 11 ready' laptop. Windows 10 C: partition migrated from my old unsupported 'main machine' then upgraded to 11. A test migration ran Insider builds for 2 months. When 11 was released on 5th October 2021 it was re-imaged back to 10 and was offered the upgrade in Windows Update on 20th October. Windows Update offered the 22H2 Feature Update on 20th September 2022. It got the 23H2 Feature Update on 4th November 2023 through Windows Update, 24H2 on 3rd October 2024 through Windows Update by setting the Target Release Version for 24H2, and 25H2 on 30th September 2025 through Windows Update by setting the Target Release Version for 25H2.

    UPDATE - 11 April 2026: due to mechanical deterioration this PC has been retired from active duty. The OS with all software and files has been migrated to my System Seven in 'Other systems' to carry on as my general purpose 'main machine'.

  • At a glance

    Windows 11 ProIntel® Core™ i5-520M8GB(integrated graphics) Intel HD Graphics
    Operating System
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Dell Latitude E4310
    CPU
    Intel® Core™ i5-520M
    Motherboard
    0T6M8G
    Memory
    8GB
    Graphics card(s)
    (integrated graphics) Intel HD Graphics
    Screen Resolution
    1366x768
    Hard Drives
    500GB Crucial MX500 SSD
    Browser
    Firefox, Edge
    Antivirus
    Defender
    Other Info
    unsupported machine: Legacy bios, MBR, TPM 1.2, upgraded from W10 to W11 using W10/W11 hybrid install media workaround.

    In-place upgrade to 22H2 using ISO and a workaround.
    Feature Update to 23H2 by manually installing the Enablement Package.
    In-place upgrade to 24H2 using hybrid 23H2/24H2 install media.
    Upgraded to 25H2 by Enablement Package.

    Also running Insider Dev, and Canary builds and Windows 10 as native boot .vhdx.
  • My SYSTEM THREE is a Dell Latitude 5410, i7-10610U, 32GB RAM, 512GB NVMe ssd, supported device running Windows 11 Pro.

    My SYSTEM FOUR is a 2-in-1 convertible Lenovo Yoga 11e 20DA, Celeron N2930, 8GB RAM, 256GB ssd. Unsupported device: currently running Win10 Pro, plus Win11 Pro RTM and Insider Dev, Beta, and RP 24H2 as native boot vhdx.

    My SYSTEM FIVE is a Dell Latitude 3190 2-in-1, Pentium Silver N5030, 8GB RAM, 1TB NVMe ssd, supported device running Windows 11 Pro, plus Insider Beta, Dev, and Canary builds (and a few others) as a native boot .vhdx.

    My SYSTEM SIX is a Dell Latitude 5550, Core Ultra 7 165H, 64GB RAM, 1TB NVMe SSD, supported device, Windows 11 Pro 24H2, Hyper-V host machine. Updated to 25H2 on 30th September 2025.

    My SYSTEM SEVEN is a Lenovo Thinkpad T580, Intel Core i7-8650U, 16GB RAM, 512GB NVMe SSD + 2nd 512GB NVMe SSD, a supported device for Windows 11. This is my current general purpose 'main machine'. The installed Windows 11 Home from my System One has been migrated to this machine.
Bree said:
As FreeBooter explained....



If it's that old, then it is entirely possible that the key used for 'Parted Magic' has just passed its expiry date.


Click to expand...

That's fine but this is at the boot manager stage, as i say windows boots and other USB's boot fine.
I got a new version of the software and it still did it, Turns out just a reflash of the (same) bios sorted it out :)
 

My Computer My Computer

At a glance

Windows 11Intel(R) Core(TM) i7-14700F (2.10 to 5.7 GHz)...32 GB Corsair Vengeance DDR5Nvidia 5060Ti 16GB
OS
Windows 11
Computer type
PC/Desktop
Manufacturer/Model
Scan
CPU
Intel(R) Core(TM) i7-14700F (2.10 to 5.7 GHz) 20 cores
Motherboard
ASUS Prime H610M-A WiFi D5
Memory
32 GB Corsair Vengeance DDR5
Graphics Card(s)
Nvidia 5060Ti 16GB
Sound Card
Onboard / Realtek
Monitor(s) Displays
BENQ GL2450
Screen Resolution
1920x1080
Hard Drives
1TB Cricial P310 (Heatsink) M.2
1 x Crucial SSD 480gb
1 x Crucial SSD 1TB
PSU
Corsair 650 w
Case
Coolmaster
Cooling
Scan Pro Glacier Liquid Cooling
Keyboard
HP keyboard and mouse combo
Mouse
HP keyboard and mouse combo
Internet Speed
900mbs
Browser
Chrome
Antivirus
Microsoft
zooburner said:
Turns out just a reflash of the (same) bios sorted it out :)
Click to expand...
Then that would suggest that the particular key/certificate held in the bios that it was being compared with had somehow been lost/corrupted. Not sure how that may have happened, not really my area of expertise.....
 

My Computers My Computers

System One System Two Other systems

  • At a glance

    Windows 11 HomeAMD Athlon Silver 3050U8GBRadeon Graphics
    OS
    Windows 11 Home
    Computer type
    Laptop
    Manufacturer/Model
    Acer Aspire 3 A315-23-R9VY
    CPU
    AMD Athlon Silver 3050U
    Memory
    8GB
    Graphics Card(s)
    Radeon Graphics
    Monitor(s) Displays
    laptop screen
    Screen Resolution
    1366x768 native resolution, up to 2560x1440 with Radeon Virtual Super Resolution
    Hard Drives
    1TB Samsung EVO 870 SSD (from April 2026: 250GB EVO 850)
    Internet Speed
    150 Mbps
    Browser
    Edge, Firefox
    Antivirus
    Defender
    Other Info
    fully 'Windows 11 ready' laptop. Windows 10 C: partition migrated from my old unsupported 'main machine' then upgraded to 11. A test migration ran Insider builds for 2 months. When 11 was released on 5th October 2021 it was re-imaged back to 10 and was offered the upgrade in Windows Update on 20th October. Windows Update offered the 22H2 Feature Update on 20th September 2022. It got the 23H2 Feature Update on 4th November 2023 through Windows Update, 24H2 on 3rd October 2024 through Windows Update by setting the Target Release Version for 24H2, and 25H2 on 30th September 2025 through Windows Update by setting the Target Release Version for 25H2.

    UPDATE - 11 April 2026: due to mechanical deterioration this PC has been retired from active duty. The OS with all software and files has been migrated to my System Seven in 'Other systems' to carry on as my general purpose 'main machine'.

  • At a glance

    Windows 11 ProIntel® Core™ i5-520M8GB(integrated graphics) Intel HD Graphics
    Operating System
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Dell Latitude E4310
    CPU
    Intel® Core™ i5-520M
    Motherboard
    0T6M8G
    Memory
    8GB
    Graphics card(s)
    (integrated graphics) Intel HD Graphics
    Screen Resolution
    1366x768
    Hard Drives
    500GB Crucial MX500 SSD
    Browser
    Firefox, Edge
    Antivirus
    Defender
    Other Info
    unsupported machine: Legacy bios, MBR, TPM 1.2, upgraded from W10 to W11 using W10/W11 hybrid install media workaround.

    In-place upgrade to 22H2 using ISO and a workaround.
    Feature Update to 23H2 by manually installing the Enablement Package.
    In-place upgrade to 24H2 using hybrid 23H2/24H2 install media.
    Upgraded to 25H2 by Enablement Package.

    Also running Insider Dev, and Canary builds and Windows 10 as native boot .vhdx.
  • My SYSTEM THREE is a Dell Latitude 5410, i7-10610U, 32GB RAM, 512GB NVMe ssd, supported device running Windows 11 Pro.

    My SYSTEM FOUR is a 2-in-1 convertible Lenovo Yoga 11e 20DA, Celeron N2930, 8GB RAM, 256GB ssd. Unsupported device: currently running Win10 Pro, plus Win11 Pro RTM and Insider Dev, Beta, and RP 24H2 as native boot vhdx.

    My SYSTEM FIVE is a Dell Latitude 3190 2-in-1, Pentium Silver N5030, 8GB RAM, 1TB NVMe ssd, supported device running Windows 11 Pro, plus Insider Beta, Dev, and Canary builds (and a few others) as a native boot .vhdx.

    My SYSTEM SIX is a Dell Latitude 5550, Core Ultra 7 165H, 64GB RAM, 1TB NVMe SSD, supported device, Windows 11 Pro 24H2, Hyper-V host machine. Updated to 25H2 on 30th September 2025.

    My SYSTEM SEVEN is a Lenovo Thinkpad T580, Intel Core i7-8650U, 16GB RAM, 512GB NVMe SSD + 2nd 512GB NVMe SSD, a supported device for Windows 11. This is my current general purpose 'main machine'. The installed Windows 11 Home from my System One has been migrated to this machine.
I had the same problem with all my computers running Windows 10.
I've tried all these solutions posted here, plus many others to no avail.
I believe the issue with Parted Magic was due to a recent Windows update, that corrupted the BIOS.
The solution to my fix was to go into the BIOS, and load the optimized defaults... that fixed the issue (obviously, if you have to apply some defaults overrides, you need to re-apply those).
Hope this solution will work for you.
 

My Computer My Computer

At a glance

WIndows 10
OS
WIndows 10
You must log in or register to reply here.

Similar threads

Secure boot violation after deleted the secure boot keys
Replies
10
Views
2K
Winback
W
Solved garlin's PowerShell scripts for updating Secure Boot CA 2023
122 123 124
Replies
2K
Views
190K
Akeo
Akeo
BSOD Watchdog Violation
Replies
1
Views
1K
FreeBooter
FreeBooter
Gigabyte Z390 Aorus Pro Wifi Mobo, Error Message: "Secure Boot Violation"
Replies
7
Views
14K
RJARRRPCGP
RJARRRPCGP

Latest Support Threads

Latest Tutorials

Back
Top Bottom