VeraCrypt
aboutsummaryrefslogtreecommitdiff
path: root/SecureBoot/readme.txt
diff options
context:
space:
mode:
authorMounir IDRASSI <mounir.idrassi@idrix.fr>2018-06-22 00:51:50 +0200
committerMounir IDRASSI <mounir.idrassi@idrix.fr>2018-06-23 00:33:33 +0200
commit6db4cbaaffefd284f0ac056313a619594a5cbd04 (patch)
treebfbc541405774d918ac003fd8689d604894dd461 /SecureBoot/readme.txt
parent1eff8b8b5e97a372473043fe3d83cef51d5c2b11 (diff)
downloadVeraCrypt-DCS-6db4cbaaffefd284f0ac056313a619594a5cbd04.tar.gz
VeraCrypt-DCS-6db4cbaaffefd284f0ac056313a619594a5cbd04.zip
Update SecureBoot PowerShell to support loading several manufacturers certificates. Add signed manufacturers certificates to help in this process.
Diffstat (limited to 'SecureBoot/readme.txt')
-rw-r--r--SecureBoot/readme.txt3
1 files changed, 2 insertions, 1 deletions
diff --git a/SecureBoot/readme.txt b/SecureBoot/readme.txt
index ce2d3d3..a38d7c7 100644
--- a/SecureBoot/readme.txt
+++ b/SecureBoot/readme.txt
@@ -6,7 +6,8 @@ to update Secure Boot configuration steps:
1. Enter BIOS configuration
2. Switch Secure boot to setup mode (or custom mode). It deletes PK (platform certificate) and allows to load DCS platform key.
3. Boot Windows
-4. execute from admin command prompt
+4. Edit the file sb_set_siglists.ps1 and uncomment the lines related to the manufacturer of the machine.
+5. execute from admin command prompt
powershell -ExecutionPolicy Bypass -File sb_set_siglists.ps1
It sets in PK (platform key) - DCS_platform
It sets in KEK (key exchange key) - DCS_key_exchange