On 7/18/25 5:54 PM, Todd Zullinger wrote:
Robert McBroom via users wrote:
The drivers work for two other installed fedora systems
but the new system just goes to nouveau. Leary of doing
something that would break the working systems. Would
think there would be a way to connect to existing
certificates.
I don't think I follow you there. But it's worth going over
things from the start, to help see where it has gone wrong.
Multiple installed systems on the same host. Four installed systems,
F41, f42 and Rawhide are fedora
following command, run as root:
mokutil --sb-state
Secure boot is enabled in the bios. Yes fedora recognizes that.
If it says only "SecureBoot enabled" then try listing all
the enrolled keys (-la is short for --list-enrolled --all):
mokutil -la
You can compare it to the output from working hosts.
mokutil -la
[MokListRT]
2bb010e24d fedoraca
9e15c765a1 HPZ440.attlocal.net-939547965
903c28f33b fedora-417764447
[MokListXRT]
0000000000 (sha256)
[PK]
bba4b07810 Hewlett-Packard UEFI Secure Boot Platform Key
[KEK]
419f5a190f Hewlett-Packard UEFI Secure Boot Key Exchange Key
31590bfd89 Microsoft Corporation KEK CA 2011
[db]
69525b095f Hewlett-Packard UEFI Secure Boot DB Key
d9e4bd4748 HP UEFI Secure Boot 2013 DB key
580a6f4cc4 Microsoft Windows Production PCA 2011
46def63b5c Microsoft Corporation UEFI CA 2011
[dbx]
6e340b9cff (sha256)
80b4d96931 (sha256)
...
Lots of similar entries to the last line. The first three seem to be
fedora specific and are seen on all three fedora installations.
--
_______________________________________________
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
