ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How to add inventory for Secure Boot setting 


Article ID: 239298


Updated On:


CA Client Automation - IT Client Manager CA Client Automation CA Client Automation - Asset Management


Secure Boot settings is not present in General Hardware Inventory. How to add it in as Additional inventory ?


Client Automation - Any Versions


1- In DSM Explorer, under Jobs/Asset Jobs create a new Asset Job of type script.
Give it a name (ex : Secure Boot)
In Script Tab, copy/paste the content of attached file secureboot.dms
2- In Scheduling Options, in Miscellaneous tab make sure that option "This job is allowed to run unattended" is checked.
3- Link this job to computers group
4- A new Additional Inventory "Secure Boot" is created for the computer.
It contains one inventory "Secure Boot Enabled" which could has one of these 3 values :
Not Supported

Additional Information

Following powershell command returns the state of Secure Boot:
powershell.exe -noprofile -executionpolicy bypass -Command Confirm-SecureBootUEFI
It returns True, False or "Confirm-SecureBootUEFI : Cmdlet not supported on this platform: 0xC0000002" if Secure Boot is not supported.


1649774388614__SecureBoot.dms get_app