I had decided to attempt to sign the bootloader and kernel with shim as it seemed the simplest to do.
I followed the steps as outlined in the Arch Wiki, however since the bootloader was already named grubx64.efi, I had done the following instead.
# cp /usr/share/shim-signed/shimx64.efi esp/EFI/GRUB/
# cp /usr/share/shim-signed/mmx64.efi esp/EFI/GRUB/

# efibootmgr --verbose --disk /dev/sdX --part Y --create --label "Shim" --loader /EFI/GRUB/shimx64.EFI

Once these were done, I enabled secure boot and into MokManager to sign both grubx64.efi and vmlinuz-linux with hash. But once complete MokManager would boot back up with the following error message.

0x1A Security Violation

Hopefully it would be possible to get secure boot up and running as Valorant does require it to be enabled on Win11 and I would like to not have to toggle it on and off when my group wants to play.

System Information:

Windows 11 and Arch Linux dual boot. Attempted using Ubuntu before Arch but didn't like it and removed it, but there is still a lingering ubuntu boot entry that I'm unsure how to remove. Not sure if the ubuntu entry is messing with things as well.

Linux usage information:

Used Mint for a year before transitioning back to Windows. Am now pretty fresh on an Arch dual boot setup.

submitted by /u/Mihaynd
[link] [comments]