When utilizing secure boot and full disk encryption on GPT x86_64 platforms, it’s not currently possible to use kernel drivers unless they are signed by a local MOK or other appropriate signing keys linked to the secure boot. For example, this prevents the use of nvidia drivers in these environments.
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Enable secure boot and full disk encryption for x86 device types | 14 | 81 | June 8, 2023 | |
| BalenaOS secure boot and disk encryption for Generic x86_64 devices now available – balenaBlog | 2 | 419 | June 2, 2023 | |
| Surface secure boot and full disk encryption in balenaCloud | 14 | 381 | April 15, 2025 | |
| Secure Boot and Full Disk Encryption: Easily Configure Device Integrity for x86_64 Devices in balenaCloud | 0 | 34 | October 15, 2025 | |
| Enable secure boot and full disk encryption for Orin-based NVIDIA devices | 0 | 88 | April 15, 2025 |