Hello,

I used the following steps to install grub 2.0 under knoppix 9.1


mkfs.fat -F32 /dev/sdb1
mount -t vfat /dev/sdb1 /media/sdb1
apt-get install grub-efi-amd64-signed
grub-install --boot-directory=/media/sdb1/boot --efi-directory=/media/sdb1 --uefi-secure-boot

But after boot I got the red sign which alerts that some files are not signed.
Can you please advise what is missing in my steps ?

I found the following link:
http://www.fit-pc.com/wiki/index.php/Linux:_Secure_Boot

I wonder if I need this complicated procedure with knoppix.

Thank you,
Zvika

Hello,

Thanks to the huge help I got in the grub mail list, grub is now booting under secure boot.

I had 2 problems:

1. The shim packages I had are for i386 not amd64. So I installed the right shim packages.

2. I had to run grub-install under knoppix 9.1 which was booted in secure boot=enable in BIOS.
Till I did it, I got the following warning:

Quote:


grub-install: warning: EFI variables are not supported on this system.



Thank you,
Zvika

Hello,

According to the following link:
https://www.youtube.com/watch?v=6JhMSKvf6Kw
The "EFI variables are not supported on this system" can be fixed by running:

modprobe efivarfs
mount -t efivarfs efivarfs /sys/firmware/efi/efivars

According to few links I found, the cause is that Knoppinx (in my case) is booting from USB stick.
I think (not sure) this is a BUG.

Thank you,
Zvika