ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How to add inventory for Secure Boot setting 

book

Article ID: 239298

calendar_today

Updated On:

Products

CA Client Automation - IT Client Manager CA Client Automation CA Client Automation - Asset Management

Issue/Introduction

Secure Boot settings is not present in General Hardware Inventory. How to add it in as Additional inventory ?

Environment

Client Automation - Any Versions

Resolution

1- In DSM Explorer, under Jobs/Asset Jobs create a new Asset Job of type script.
 
Give it a name (ex : Secure Boot)
 
In Script Tab, copy/paste the content of attached file secureboot.dms
 
 
 
2- In Scheduling Options, in Miscellaneous tab make sure that option "This job is allowed to run unattended" is checked.
 
 
 
3- Link this job to computers group
 
4- A new Additional Inventory "Secure Boot" is created for the computer.
 
It contains one inventory "Secure Boot Enabled" which could has one of these 3 values :
False
True
Not Supported
 

Additional Information

Following powershell command returns the state of Secure Boot:
powershell.exe -noprofile -executionpolicy bypass -Command Confirm-SecureBootUEFI
 
It returns True, False or "Confirm-SecureBootUEFI : Cmdlet not supported on this platform: 0xC0000002" if Secure Boot is not supported.

Attachments

1649774388614__SecureBoot.dms get_app