ESXi Host and VM Secure Boot Visibility with VCF Operations
- Brock Peterson
- 2 hours ago
- 1 min read
I was trying to determine what ESXi Hosts and VMs in my lab had Secure Boot enabled, here's what I did.
A couple caveats before we get started:
ESXi Host Secure Boot property isn't available in Operations 8.18.x, it's not available until 9.0. You should confirm it's enabled in the Policy/s.
VM EFI Secure Boot property is available in VCF Operations 8.18.x+, but must be enabled in the Policy/s.
ESXi Host TPM Version isn't available until VCF Operations 9.0, so you won't see that property until then.
I used the vCommunity Management Pack to capture additional properties: VM Boot Delay, Boot Order, Boot Retry, Boot Retry Delay, Enter BIOS Setup.
This will allow you to see quite a bit of information:
ESXi Hosts
ESXi Version
BIOS Version
TPM Version
Secure Boot Enabled
Lockdown Mode
VMs
VM Hardware Version
EFI Secure Boot Enabled
Boot Delay
Boot Order
Boot Retry Enabled
Boot Retry Detail
Enter BIOS Setup
Network Boot Protocol
If you'd like this Dashboard (and Views) you can get them here, enjoy!