XCP-ng
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Getting Secure Boot to work after a V2V from VMware?

    Scheduled Pinned Locked Moved Migrate to XCP-ng
    2 Posts 2 Posters 36 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • linuxmooseL Offline
      linuxmoose
      last edited by linuxmoose

      With Xen Orchestra 5.110.1, and fully patched XCP-ng 8.3 hosts in a pool, if I use V2V to import a Windows 2025 VM from vSphere 8 (VM is UEFI with secure boot enabled), the VM will only boot if I disable secure boot. Everything works perfectly after the migration with secure boot disabled, but if I enable it, I get the UEFI interactive shell. I've done "secureboot-certs install" on the pool. When the VM is powered up and at the UEFI shell screen, I have an option on the "advanced" tab to copy the pool's default UEFI certs to the VM (it disappears if the VM is powered off). Selecting this, and rebooting has no effect. Also, this error occurs in the log for the VM: "VM_SECURE_BOOT_FAILED The VM failed to pass Secure Boot verification."
      I will admit that I don't have a strong understanding of the internals of secure boot, as it "just works" in VMware, and I've never had to do any troubleshooting of it.
      What am I missing? I could open a support request, but I thought maybe someone here would be able to point me in the right direction.
      Thanks.
      Allen B.

      1 Reply Last reply Reply Quote 0
      • olivierlambertO Offline
        olivierlambert Vates 🪐 Co-Founder CEO
        last edited by

        Hi,

        A question between @dinhngtu and the @Team-OS-Platform-Release I suppose 😄

        1 Reply Last reply Reply Quote 0
        • First post
          Last post