MokManager does not start on reboot

boot dual-boot grub2 encryption secure-boot
7,454

Firts, your platform must be in Secure Boot User Mode.

Do:

sudo mokutil --test-key MOK.der    
# your cert should not be currently enrolled

sudo mokutil --import <your cert>
# mokutil should request pwd 

sudo mokutil --test-key MOK.der    
# your cert should be enrolled now 

sudo mokutil --list-new    
# your cert should be displayed

reboot

MokManager should kick in and ask you to confirm cert enrollment.

Share:
7,454

Related videos on Youtube

Mike Dacre
Author by

Mike Dacre

Updated on September 18, 2022

Comments

  • Mike Dacre
    Mike Dacre over 1 year

    I am on Ubuntu 18.04, 4.15.0-23-generic.

    My laptop has two hard drives, one with windows 10, encrypted with bitlocker, and the other with Ubuntu, with LUKS full disk encryption.

    Right now, when switching between the two OSes, I have to enter the bios to toggle secure boot on and off. I would ideally like to use secure boot on Ubuntu as well, but I am a virtual-box user, which means I have to sign the kernel modules.

    I tried following these two guides: https://blog.ubuntu.com/2017/08/11/how-to-sign-things-for-secure-boot https://stegard.net/2016/10/virtualbox-secure-boot-ubuntu-fail/

    I tried both independently, so I made to MOK.der certificates, and then ran mokutil --import MOK.der followed by immediate reboot.

    I tried this several times, once after running sudo mokutil --enable-validation, every time the MokManager is not present at boot. Grub just runs normally, there is nothing in advanced options for starting ubuntu either, just the usual different kernel versions.

    Any idea why MokManager just does not start at boot? I mentioned my enryption setup because I am wondering if that is the issue.

  • Mike Dacre
    Mike Dacre almost 6 years
    OK, so this doesn't actually answer my question, because this is what I did and nothing happened, however three days after I had given up on a random reboot (after more than 6 other reboots), the MokManager just opened. No idea why or what was different, but I followed the instructions and it worked, so I am happy. That also means this is the correct answer. For anyone else finding this: it will work, eventually.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to fix: ata7: com reset failed errno=-32?
Ubuntu won't boot because of lvmetad
Windows not booting in dual boot with Ubuntu 12.04 and Windows 7
Installed ubuntu on external hardrive, tried to boot got grub rescue?
"Lvmetad is not active yet, using direct activation during sysinit" on boot?
Grub issue, boot repair not working
ubuntu is not booting, after dual boot installation with windows 7
Install Ubuntu on a second harddrive without messing with other drives or main Windows 7 bootloader?
Ubuntu 12.04 failed to reboot after unsuccessful update done on 28/8/2013
After re-installing ubuntu 13.10, stuck at GRUB Rescue, Boot-Repair didn't work!