I'm looking for some guidance on how to handle the secure boot keys that are set to expire in July this year. I saw an error (1801) in the event viewer which indicated that new keys are available for my device but haven't been applied to the firmware yet.
I built my PC in December 2024 using a Gigabyte Aorus B650 Elite AX (rev 1.2) and I'm currently running BIOS version FB2, which I haven't updated since everything has been functioning smoothly.
I'm wondering if I need to update my BIOS to the latest version to refresh the secure boot keys before the expiration, or can I simply do this while remaining on FB2? Any suggestions would be really helpful!
2 Answers
Have you updated your BIOS yet? To apply new keys, you do need to have UEFI boot enabled along with Secure Boot. In most cases, a BIOS update alongside keeping your Windows updated should do the trick!
From what I gather, if your PC was built recently (like within the last two years), you should already have the new keys. Microsoft plans to roll out updates, so just ensure your BIOS/Firmware and Windows updates are current. For Linux users out there, I think secure boot isn't a big concern as most distros don't require it.
I have Secure Boot enabled, but I haven't touched the BIOS yet. I was always of the mindset that if things are working, why change? But if updating it is essential for the keys, I suppose I have to consider it. I'm a bit hesitant since I've never updated my BIOS before.