Jump to content

Secure boot disabled for Linux, but enabled for Windows?

spak
 Share
Go to solution Solved by OhioYJ,
56 minutes ago, spak said:

I've installed recommended drivers from the driver manager.

I do know at some point I had issues with one of the drivers (that was working perfectly) after a kernel update, so I had to switch versions (so don't get hung up on "recommended" version too much). 

 

Have you tried manually enrolling the secure boot key? It should do that automatically. However, you will have to do that say after a BIOS update. From the terminal:

  

sudo update-secureboot-policy --enroll-key

 

Reboot, enroll the key. 

 

If that doesn't work, I would try a different driver entirely. It should just work. I'm using secure boot with Nvidia and Mint on multiple machines. 

Posted

Hello,
I'm a fresh Linux user, just installed Mint 22 Cinnamon yesterday alongside Windows 11 (dual boot). I've installed the recommended Nvidia drivers but they don't work - apparently secure boot is blocking them.
I tried using this command: 

mokutil --disable-validation

but it doesn't work.
I need the secure boot to be enabled, so here's my question:
Can I somehow disable secure boot for Linux, but keep it enabled for Windows?

Link to post
Share on other sites
Posted

Yeah, by going into the bios and turning it on/off each time you boot another OS...

F@H
Desktop: i9-13900K, ASUS Z790-E, 64GB DDR5-6000 CL36, RTX3080, 2TB MP600 Pro XT, 2TB SX8200Pro, 2x16TB Ironwolf RAID0, Corsair HX1200, Antec Vortex 360 AIO, Thermaltake Versa H25 TG, Samsung 4K curved 49" TV, 23" secondary, Mountain Everest Max

Mobile SFF rig: i9-9900K, Noctua NH-L9i, Asrock Z390 Phantom ITX-AC, 32GB, GTX1070, 2x1TB SX8200Pro RAID0, 2x5TB 2.5" HDD RAID0, Athena 500W Flex (Noctua fan), Custom 4.7l 3D printed case

 

Asus Zenbook UM325UA, Ryzen 7 5700u, 16GB, 1TB, OLED

 

GPD Win 2

Link to post
Share on other sites
Posted
  • Author
1 hour ago, Kilrah said:

Yeah, by going into the bios and turning it on/off each time you boot another OS...

Funny idea.
Do you have any suggestions for how to make the drivers work on Linux while keeping secure boot enabled?

Link to post
Share on other sites
Posted

Never tried, but see this

https://askubuntu.com/questions/1023036/how-to-install-nvidia-driver-with-secure-boot-enabled

F@H
Desktop: i9-13900K, ASUS Z790-E, 64GB DDR5-6000 CL36, RTX3080, 2TB MP600 Pro XT, 2TB SX8200Pro, 2x16TB Ironwolf RAID0, Corsair HX1200, Antec Vortex 360 AIO, Thermaltake Versa H25 TG, Samsung 4K curved 49" TV, 23" secondary, Mountain Everest Max

Mobile SFF rig: i9-9900K, Noctua NH-L9i, Asrock Z390 Phantom ITX-AC, 32GB, GTX1070, 2x1TB SX8200Pro RAID0, 2x5TB 2.5" HDD RAID0, Athena 500W Flex (Noctua fan), Custom 4.7l 3D printed case

 

Asus Zenbook UM325UA, Ryzen 7 5700u, 16GB, 1TB, OLED

 

GPD Win 2

Link to post
Share on other sites
Posted
52 minutes ago, spak said:

Funny idea.
Do you have any suggestions for how to make the drivers work on Linux while keeping secure boot enabled?

Is there a reason you aren't using one of the signed drivers from synaptic or the driver manager? All of those will just work with secure boot enabled, no fiddling around.

 

I haven't looked recently, I think up to 550 was in there. My 4090 runs fine with it. 

Link to post
Share on other sites
Posted
  • Author
4 minutes ago, OhioYJ said:

Is there a reason you aren't using one of the signed drivers from synaptic or the driver manager? All of those will just work with secure boot enabled, no fiddling around.

 

I haven't looked recently, I think up to 550 was in there. My 4090 runs fine with it. 

I've installed recommended drivers from the driver manager.

Link to post
Share on other sites
Posted
  • Solution
56 minutes ago, spak said:

I've installed recommended drivers from the driver manager.

I do know at some point I had issues with one of the drivers (that was working perfectly) after a kernel update, so I had to switch versions (so don't get hung up on "recommended" version too much). 

 

Have you tried manually enrolling the secure boot key? It should do that automatically. However, you will have to do that say after a BIOS update. From the terminal:

  

sudo update-secureboot-policy --enroll-key

 

Reboot, enroll the key. 

 

If that doesn't work, I would try a different driver entirely. It should just work. I'm using secure boot with Nvidia and Mint on multiple machines. 

Link to post
Share on other sites
Posted
  • Author
3 hours ago, OhioYJ said:

I do know at some point I had issues with one of the drivers (that was working perfectly) after a kernel update, so I had to switch versions (so don't get hung up on "recommended" version too much). 

 

Have you tried manually enrolling the secure boot key? It should do that automatically. However, you will have to do that say after a BIOS update. From the terminal:

  

sudo update-secureboot-policy --enroll-key

 

Reboot, enroll the key. 

 

If that doesn't work, I would try a different driver entirely. It should just work. I'm using secure boot with Nvidia and Mint on multiple machines. 

It worked perfectly fine. Drivers are working now, thank you very much.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Linux, macOS and Everything Not-Windows

×