Problem/Justification
Currently TrueNAS-SCALE does not boot with secure-boot being enabled. This is a extra security feature providing protection against things like rootkits.
Impact
Users with secure-boot enabled would be able to enjoy the benefits of the extra security it provides, while users that either do not want to enable it or whose systems do not support secure boot would be unaffected.
User Story
Secure-Boot is becoming more widely used in enterprise environments. Users would simply enable secure-boot in bios there shouldn’t be any extra configuration needed in TrueNAS itself.
I rethermaled my unit and somehow I cleared my CMOS.
Anyway, I realised when the CMOS cleared it went back to a default of “Secure Boot Enabled”. I had previously disabled secure boot because everyone said it is not working with secure boot, yet here I am with Secure Boot enabled and it is booting just fine.
What could be happening? Should I disable Secure Boot?
We have ongoing initiatives to look at security on TrueNAS, Thank you for this input. This will be included in our planning for future releases.
This request is now closed for voting, and your votes have been released back to use on other requests
We’ll conduct a thorough analysis to determine if and how this feature might be implemented
Please note that transfer to the roadmap doesn’t guarantee implementation - some features may not proceed based on our assessment findings, however we will update this thread once a decision has been made.
Thank you to everyone who voted and contributed to the discussion. Your input has been invaluable in helping us understand the community’s needs and use cases for this feature.
