Official NixOS Wiki

Secure Boot/fr: Difference between revisions

← Older editNewer edit →
VisualWikitext
Ben9986 (talk | contribs)
25 edits
Created page with "Sur NixOS, le démarrage sécurisé peut être activé à l'aide des projets Lanzaboote ou Limine."
FuzzyBot (talk | contribs)
2,907 edits
Updating to match new version of source page
Line 7: Line 7:


Il est recommandé de définir un mot de passe BIOS et le chiffrement total du disque afin de se prémunir d'attaques contre l'UEFI et le démarrage sécurisé.
Il est recommandé de définir un mot de passe BIOS et le chiffrement total du disque afin de se prémunir d'attaques contre l'UEFI et le démarrage sécurisé.
<div lang="en" dir="ltr" class="mw-content-ltr">
[[Category:Security]]
[[Category:Booting]]
</div>
<div lang="en" dir="ltr" class="mw-content-ltr">
== Checking Secure Boot status ==
The easiest way to check if your machine has Secure Boot enabled is through the use of [[Systemd]]'s <code>bootctl</code>. There is no need to be using [[Systemd/boot|systemd-boot]] as your bootloader for this command to work. <syntaxhighlight lang="console">
$ bootctl status
System:
    Firmware: UEFI 2.80 (American Megatrends 5.25)
    Firmware Arch: x64
    Secure Boot: enabled (user)
    TPM2 Support: yes
    Measured UKI: yes
    Boot into FW: supported
...
</syntaxhighlight>The system above has secure boot enabled and enforced. Other values include <code>disabled (setup)</code> for Setup Mode, <code>disabled (disabled)</code> or <code>disabled (unsupported)</code>. The unsupported tag only appears if your device firmware does not support Secure Boot at all.
If you see <code>disabled (disabled)</code>, this means you will need to enable Secure Boot in your UEFI firmware settings before proceeding to use one of the projects outlined here.
</div>
Retrieved from "https://wiki.nixos.org/wiki/Secure_Boot/fr"