Step 10 – (Optional) Disable Secure Boot
As part of the default settings of the DPU, UEFI Secure Boot is enabled and requires no
special configuration to use it with the bundled Ubuntu OS shipped with the BlueField
DPU. Disabling UEFI Secure Boot may be necessary when running an unsigned Arm OS
image, such as a customer OS. Using Redfish Secure Boot schema over 1GbE to DPU
BMC, run:
For more information on user management, review this page.
Changing host privilege level requires DPU reset for the change to
take effect.
Info
For more information on BlueField Operational modes, refer to this
page.
curl -k -u root:<password> -H "Content-Type: application/octet-stream" -X GET https://<DPU-BMC-
IP>/redfish/v1/Systems/Bluefield/SecureBoot
{
"@odata.id": "/redfish/v1/Systems/Bluefield/SecureBoot",
"@odata.type": "#SecureBoot.v1_1_0.SecureBoot",
"Description": "The UEFI Secure Boot associated with this system.",
"Id": "SecureBoot",
"Name": "UEFI Secure Boot",
"SecureBootCurrentBoot": "Enabled",
"SecureBootEnable": true,
"SecureBootMode": "SetupMode"
}
curl -k -u root:<password> -X PATCH https://<DPU-BMC-IP>/redfish/v1/Systems/Bluefield/SecureBoot -H
'Content-Type: application/json' -d '{"SecureBootCurrentBoot": "Enabled", "SecureBootEnable": true,
"SecureBootMode": "SetupMode"}'
To Next Page
Loading...