Windows DB Certificate

Summary

Automate role to detect if a Windows agent has the updated 2023 DB Certificate. If the Windows DB Certificate role is detected, the DB certificate is up to date.

Settings

Role Name

Windows DB Certificate

Type

PowerShell

Sub-Type

BIOS

Detection String

{%@powershell.exe -nologo -noprofile -command "[System.Text.Encoding]::ASCII.GetString((Get-SecureBootUEFI db).bytes) -match '(Windows|Microsoft) UEFI CA 2023'"@%}

Serial Key

{%-HKLM\SYSTEM\CurrentControlSet\Control\SecureBoot\Servicing:WindowsUEFICA2023Capable-%}

Comparator

Equals

Result

True

Applicable OS

Windows

Summary​

Settings​

Role Name​

Type​

Sub-Type​

Detection String​

Serial Key​

Comparator​

Result​

Applicable OS​

Summary

Settings

Role Name

Type

Sub-Type

Detection String

Serial Key

Comparator

Result

Applicable OS