UEFI PXE Secure Boot

Cloud DesktopLess than 1 minuteReferenceUEFI PXE Secure Boot

Settings in server

Please download the signed snponly.efi file and copy the snponly.efi file to the cloud desktop server installation directory, for example, C:\Program Files\iscsidiskServer\

Restart the iscsidisk service and edit the computer's pxe boot mode to uefi snponly.

UFEI snponly

Setting in client computer

Enroll the VMware certificate in UEFI firmware.
Download and copy vmware_esx40.der and vmware_sb2017.der to usb and reboot client computer into BIOS.

Enable Secure Boot, select OS Type to “Windows UEFI mode”

Enter Key Management, DB Management, to add your centificate “vmware_esx40.der”, “vmware_sb2017.der”.

!Note: You may be asked for a SignatureOwner GUID when you enroll the VMware certificate. Secure Boot will function correctly no matter what GUID you use, but VMware suggests using the GUID a3d5e95b-0a8f-4753-8735-445afb708f62 in order to identify VMware as the owner of the certificate. ( https://kb.vmware.com/s/article/2148532?lang=en_USopen in new window )

Last save bios and confirm Secure boot state is enable.

Please use GPT system image to test uefi pxe secure boot

If you see this warning, please check that the above steps are set up correctly.