Verify whether an instance is enabled for UEFI Secure Boot
You can use the mokutil
utility to verify whether a Linux instance
is enabled for UEFI Secure Boot. If mokutil
is not installed on your
instance, you must install it. For the installation instructions for Amazon Linux 2,
see https://docs.amazonaws.cn/linux/al2/ug/find-install-software.html.
For other Linux distributions, see their specific documentation.
To verify whether a Linux instance is enabled for UEFI Secure Boot
Run the following command as root
on the instance.
mokutil --sb-state
Expected output:
-
If UEFI Secure Boot is enabled, the output contains
SecureBoot enabled
. -
If UEFI Secure Boot is not enabled, the output contains
SecureBoot disabled
orFailed to read SecureBoot
.