This might be helpful if you can use with Garuda Linux distro's builds, for Booting with Secure Boot Enabled, solus 4.4 distro's found a good way to do this I think

Since Solus 4.4 secure boot is now supported. When you first boot the ISO, and, if you have secure boot enabled in your UEFI firmware; you will have to perform the one-time-step of manually enrolling the Solus certificate. The following guide will walk you through this. If you already have Solus installed and wish to enable secure boot, skip ahead here.

Note that this only applies to machines with UEFI firmware, if your machine uses the older BIOS firmware you can safely ignore this article. If you wish to avoid having to do this step then you may disable secure boot in your machine's UEFI firmware interface.

I think maybe if arch linux based ones use something like this, they would be able to also find a fix for that whole secure boot thing, I know fedora, kubuntu, ubuntu and OpenSuse already have their own method, but I think the registering an .cer file into the secure boot that then allows you to boot into linux with secure boot on, seems to work on all my pc's so far, for the Solus version, I wanted to post this somewhere like here, anyway I hope this can be put into other linux distros too, it might help people that don't want to touch their bios settings.


The linked article appears to be relevant only for Solus OS–not Garuda Linux, Arch Linux, or any Arch-based distro.

The method for enabling secure boot on Arch is detailed here: Unified Extensible Firmware Interface/Secure Boot - ArchWiki

Users of the rEFInd boot manager can enjoy a more simplified process. The ArchWiki describes the rEFInd method here: rEFInd - ArchWiki

Toss the keys in a directory on the EFI partition, run the script, and you’re done! :grinning:

Rod Smith has also written an article on making your own keys (the how and the why): Managing EFI Boot Loaders for Linux: Controlling Secure Boot

rEFInd also ships with ready-to-use keys:

If you decide to use outside keys, you should obtain them from their maintainer. For convenience, my rEFInd boot manager comes with a number of keys; see its git repository for easy access to individual keys.


It looks like you are pasting this elsewhere also:

Is this meant to be helpful somehow? It seems a little spammy.


Posted this same crap on Manjaro as well. Suggest locking the thread just like they did on the Manjaro forums. Have to wonder what other forums this was posted to.


This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.