On 7/9/25 11:21 AM, Alexander F. Lent wrote:
I usually use mokutil to list keys: (it should be installed by default)
$ mokutil -l --kek
$ mokutil -l --db
Thanks! This list showed I missed the CA in the hexdump. My Supermicro server has
the 2023 CA.
However, when I ran the same commands on my Gigabyte motherboard there was no
output.
My server has secure boot enabled, but the desktop does not. Does mokutil depend on
Secure Boot being enabled? The efivar command dumped without secure boot.
$ mokutil -l -a
[MokListRT]
2bb010e24d fedoraca
[MokListXRT]
0000000000 (sha256)
[PK]
[KEK]
[db]
[dbx]
*sigh* UEFI. :(
--
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
