{"id":3550,"date":"2026-05-08T10:11:53","date_gmt":"2026-05-08T10:11:53","guid":{"rendered":"https:\/\/im-cybersec.com\/?p=3550"},"modified":"2026-05-08T10:13:00","modified_gmt":"2026-05-08T10:13:00","slug":"prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca","status":"publish","type":"post","link":"https:\/\/im-cybersec.com\/de\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/","title":{"rendered":"Sind Sie vorbereitet f\u00fcr den Ablauf der Windows Secure Boot UEFI 2011 CA?\u00a0"},"content":{"rendered":"<p class=\"has-medium-font-size\">Viele Systemadministratoren haben es vielleicht noch nicht auf dem Schirm, dass in K\u00fcrze die Certificate Authority (CA), mit dem der Windows Secure Boot Loader und die Secure Boot Datenbanken signiert sind, abl\u00e4uft und durch eine neue ersetzt werden muss. Im Netz kursieren viele Informationen zu diesem Thema, aber zumeist nur Teilst\u00fccke. Daher m\u00f6chten wir dieses Thema ganzheitlich aus der Sicht eines Systemadministrators betrachten.\u00a0<\/p>\n\n\n\n<p class=\"has-medium-font-size\"><\/p>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-09f50613\"><h2 class=\"uagb-heading-text\"><strong><strong>Windows UEFI Secure Boot verwendet 4 Datenbanken:\u00a0<\/strong><\/strong><\/h2><\/div>\n\n\n\n<div class=\"wp-block-uagb-container uagb-block-9af8250a alignfull uagb-is-root-container\"><div class=\"uagb-container-inner-blocks-wrap\">\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n<\/div><\/div>\n\n\n\n<p class=\"has-medium-font-size\">- KEK (key enrollement key): Die darin gespeicherte CA wird verwendet, um Aktualisierungen der Active DB und DBX zu signieren. Die hierin gespeicherte Microsoft CA von 2011 l\u00e4uft im Juni 2026 ab. Nach Ablauf der CA k\u00f6nnen in der DB und DBX keine \u00c4nderungen mehr signiert werden.\u00a0<br>- Default DB: Viele Markenhersteller aktualisieren die darin enthaltene CA mit der Microsoft 2023 CA. Jedoch wird diese Default DB nicht beim Booten verwendet, es sei denn man setzt das BIOS auf Factory Default zur\u00fcck.\u00a0<br>- Active DB (Secure Boot Signature Database): Hier sitzt die CA, die f\u00fcr den Secure Boot verwendet wird. Die Microsoft 2011 CA f\u00fcr den Windows Bootloader l\u00e4uft im Oktober 2026, die f\u00fcr 3rd-Party Bootloader im Juni 2026 ab.\u00a0\u00a0<br>- DBX (Secure Boot Revoked Signature Database): Zur\u00fcckgerufene Zertifikate\/Bootloader\u00a0<\/p>\n\n\n\n<p class=\"has-medium-font-size\"><\/p>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-d24d9a9c\"><h2 class=\"uagb-heading-text\">Was passiert, wenn die CA abgelaufen ist?\u00a0<\/h2><\/div>\n\n\n\n<div class=\"wp-block-uagb-container uagb-block-72538a26 alignfull uagb-is-root-container\"><div class=\"uagb-container-inner-blocks-wrap\">\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n<\/div><\/div>\n\n\n\n<p class=\"has-medium-font-size\">Laut Microsoft funktioniert der Secure Boot der bestehenden Windows Installationen nach wie vor. Jedoch k\u00f6nnen keine \u00c4nderungen der Secure Boot Konfiguration vorgenommen werden und der Store f\u00fcr zur\u00fcckgerufenen Bootloader wird nicht mehr aktualisert. Dies ist ein Sicherheitsrisiko.\u00a0<br><br>F\u00fcr Systemadministratoren bedeutet das aber auch, dass Deployment Tools, die zum Beispiel PXE-Boot oder USB-Boot verwenden, nicht mehr funktionieren, da die alte CA abgelaufen ist und die neue CA nicht akzeptiert wird.\u00a0<\/p>\n\n\n\n<p class=\"has-medium-font-size\"><\/p>\n\n\n\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-61f23212\"><h2 class=\"uagb-heading-text\"><strong><strong>Warum passiert das Update der CA nicht automatisch?\u00a0<\/strong><\/strong><\/h2><\/div>\n\n\n\n<div class=\"wp-block-uagb-container uagb-block-4d38485c alignfull uagb-is-root-container\"><div class=\"uagb-container-inner-blocks-wrap\">\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n<\/div><\/div>\n\n\n\n<p class=\"has-medium-font-size\">Im Prinzip kann es automatisch passieren, aber in der Realit\u00e4t muss man doch eingreifen. Die Default DB wird zwar \u00fcber BIOS Updates aktualisiert, sofern der Hersteller f\u00fcr das Modell noch BIOS Updates liefert. Ma\u00dfgeblich ist allerdings die Active DB. Diese soll zwar durch Windows Update die neue UEFI 2023 CA bekommen, aber in der Standardeinstellung ist dies deaktiviert. Im Windows Aufgabenplanner ist ein Task konfiguriert, der alle 12 Stunden l\u00e4uft und die UEFI 2023 CA in KEK und Active DB schreiben soll. Dies kann er aber zumeist nicht, weil eine Einstellung in der Registry dies blockiert. Daher kommen im Windows System Log die Fehlermeldungen 1801 von TPM-WMI.\u00a0<\/p>\n\n\n\n<div class=\"wp-block-uagb-container uagb-block-628edde5 alignfull uagb-is-root-container\"><div class=\"uagb-container-inner-blocks-wrap\">\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n<\/div><\/div>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-7a8d9477\"><h2 class=\"uagb-heading-text\"><strong><strong>Wie kann ich nun die UEFI 2023 CA ausrollen?\u00a0<\/strong><\/strong><\/h2><\/div>\n\n\n\n<div class=\"wp-block-uagb-container uagb-block-a4f14b13 alignfull uagb-is-root-container\"><div class=\"uagb-container-inner-blocks-wrap\">\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n<\/div><\/div>\n\n\n\n<p class=\"has-medium-font-size\">Laut unseren Informationen muss Secure Boot daf\u00fcr eingeschaltet sein.\u00a0<br><br>Microsoft hat eine administrative Vorlage in den Grruppenrichtlinien-Vorlagen von Windows 11 25H2 (v2) daf\u00fcr vorgesehen. Die Bezeichnung der 3 vorhandenen Vorlagen f\u00fcr Secure Boot ist allerdings missverst\u00e4ndlich, daher sollte man sich genau informieren, welche davon man aktiviert. Meistens wird man \"Enable Secure Boot Certificate Deployment\" aktivieren.\u00a0<br><br>Einmal angewendet, kann der Hintergrundjob im Aufgabenplaner das Zertifikat in KEK und Active DB schreiben und nach 2 Reboots ist die Sache erledigt.\u00a0\u00a0<br><br>Es empfiehlt sich jedoch, den Vorgang und den Status zu \u00fcberwachen. Mit 2 einfachen Inventarregeln in KACE oder Action1 kann man auslesen, ob das Deployment tats\u00e4chlich aktiviert ist und wie der Status der UEFI2023CA ist (NotStarted, InProgress oder Updated).\u00a0<br><br>Die Gruppenrichtline erlaubt zwar das Update der CA, aber erst mit den Inventarregeln und zugeh\u00f6rigen Berichten bekommt man den \u00dcberblick, welche Ger\u00e4te sicher sind und wo h\u00e4ndisch eingegriffen werden muss.\u00a0<\/p>\n\n\n\n<p class=\"has-medium-font-size\"><\/p>\n\n\n\n<div class=\"wp-block-uagb-container uagb-block-877edecf alignfull uagb-is-root-container\"><div class=\"uagb-container-inner-blocks-wrap\">\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-4c7e1d18\"><h2 class=\"uagb-heading-text\"><strong>Ben\u00f6tigen Sie Unterst\u00fctzung beim Rollout des Windows Secure Boot CA?<\/strong><\/h2><\/div>\n<\/div><\/div>\n\n\n\n<div class=\"wp-block-uagb-container uagb-block-7e23fd34 alignfull uagb-is-root-container\"><div class=\"uagb-container-inner-blocks-wrap\">\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n<\/div><\/div>\n\n\n\n<p class=\"has-medium-font-size\">Wenn Sie unsicher sind, ob Ihre Umgebung bereits auf das bevorstehende Ablaufdatum der Secure-Boot-Zertifizierungsstelle vorbereitet ist, oder wenn Sie Betriebsunterbrechungen und Sicherheitsl\u00fccken vermeiden m\u00f6chten, stehen wir Ihnen gerne zur Seite. Wir unterst\u00fctzen Sie bei der Planung und Durchf\u00fchrung des UEFI-2023-CA-Rollouts, bei der Konfiguration der erforderlichen Gruppenrichtlinien sowie bei der Validierung, dass die Bereitstellung erfolgreich auf allen Endger\u00e4ten umgesetzt wurde. Dar\u00fcber hinaus helfen wir Ihnen beim Aufbau eines geeigneten Monitorings und Reportings, sodass Sie jederzeit einen klaren \u00dcberblick dar\u00fcber haben, welche Ger\u00e4te konform sind und wo noch manuelle Ma\u00dfnahmen erforderlich sind. Kontaktieren Sie uns f\u00fcr eine Beratung und stellen Sie sicher, dass Ihre Infrastruktur sicher und zukunftsf\u00e4hig bleibt \u2013 ohne unn\u00f6tige Risiken oder kurzfristigen Handlungsdruck.<\/p>\n\n\n\n<p class=\"has-medium-font-size\"><\/p>\n\n\n\n<div class=\"wp-block-uagb-buttons uagb-buttons__outer-wrap uagb-btn__default-btn uagb-btn-tablet__default-btn uagb-btn-mobile__default-btn uagb-block-925ecbcd\"><div class=\"uagb-buttons__wrap uagb-buttons-layout-wrap\">\n<div class=\"wp-block-uagb-buttons-child uagb-buttons__outer-wrap uagb-block-9debbc82 wp-block-button\"><div class=\"uagb-button__wrapper\"><a class=\"uagb-buttons-repeater wp-block-button__link\" aria-label=\"\" href=\"https:\/\/im-cybersec.com\/de\/contact\/\" rel=\"follow noopener\" target=\"_self\" role=\"button\"><div class=\"uagb-button__link\">Buchen Sie einen Anruf<\/div><\/a><\/div><\/div>\n<\/div><\/div>","protected":false},"excerpt":{"rendered":"<p>Many system administrators may not yet be aware that the Certificate Authority (CA) used to sign the Windows Secure Boot\u00a0Loader\u00a0and the Secure Boot databases is set to expire shortly and must be replaced with a new one. There is a lot of information circulating online about this topic, but most of it is incomplete. Therefore, [&hellip;]<\/p>","protected":false},"author":1,"featured_media":3551,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[5],"tags":[],"class_list":["post-3550","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uem"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0 - IM CyberSec<\/title>\n<meta name=\"description\" content=\"Okta: With employees, partners, and customers accessing applications from anywhere, organizations can no longer rely on traditional network-\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/im-cybersec.com\/de\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/\" \/>\n<meta property=\"og:locale\" content=\"de_DE\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0 - IM CyberSec\" \/>\n<meta property=\"og:description\" content=\"Okta: With employees, partners, and customers accessing applications from anywhere, organizations can no longer rely on traditional network-\" \/>\n<meta property=\"og:url\" content=\"https:\/\/im-cybersec.com\/de\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/\" \/>\n<meta property=\"og:site_name\" content=\"IM CyberSec\" \/>\n<meta property=\"article:published_time\" content=\"2026-05-08T10:11:53+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-05-08T10:13:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png\" \/>\n\t<meta property=\"og:image:width\" content=\"2000\" \/>\n\t<meta property=\"og:image:height\" content=\"500\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"anita.xd@yahoo.com\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Verfasst von\" \/>\n\t<meta name=\"twitter:data1\" content=\"anita.xd@yahoo.com\" \/>\n\t<meta name=\"twitter:label2\" content=\"Gesch\u00e4tzte Lesezeit\" \/>\n\t<meta name=\"twitter:data2\" content=\"1\u00a0Minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/\"},\"author\":{\"name\":\"anita.xd@yahoo.com\",\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/#\\\/schema\\\/person\\\/881cf8ee4594040f2ee1098fba22983c\"},\"headline\":\"Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0\",\"datePublished\":\"2026-05-08T10:11:53+00:00\",\"dateModified\":\"2026-05-08T10:13:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/\"},\"wordCount\":710,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/im-cybersec.com\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png\",\"articleSection\":[\"UEM\"],\"inLanguage\":\"de\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/\",\"url\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/\",\"name\":\"Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0 - IM CyberSec\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/im-cybersec.com\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png\",\"datePublished\":\"2026-05-08T10:11:53+00:00\",\"dateModified\":\"2026-05-08T10:13:00+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/#\\\/schema\\\/person\\\/881cf8ee4594040f2ee1098fba22983c\"},\"description\":\"Okta: With employees, partners, and customers accessing applications from anywhere, organizations can no longer rely on traditional network-\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/#breadcrumb\"},\"inLanguage\":\"de\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/#primaryimage\",\"url\":\"https:\\\/\\\/im-cybersec.com\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png\",\"contentUrl\":\"https:\\\/\\\/im-cybersec.com\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png\",\"width\":2000,\"height\":500},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/im-cybersec.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/#website\",\"url\":\"https:\\\/\\\/im-cybersec.com\\\/\",\"name\":\"IM CyberSec\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/im-cybersec.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"de\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/im-cybersec.com\\\/#\\\/schema\\\/person\\\/881cf8ee4594040f2ee1098fba22983c\",\"name\":\"anita.xd@yahoo.com\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/229e9beba15247a177ba258405a92e675b8a68f26f39e77887a63f4b4203c7a3?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/229e9beba15247a177ba258405a92e675b8a68f26f39e77887a63f4b4203c7a3?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/229e9beba15247a177ba258405a92e675b8a68f26f39e77887a63f4b4203c7a3?s=96&d=mm&r=g\",\"caption\":\"anita.xd@yahoo.com\"},\"sameAs\":[\"https:\\\/\\\/im-cybersec.com\"],\"url\":\"https:\\\/\\\/im-cybersec.com\\\/de\\\/author\\\/anita-xdyahoo-com\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0 - IM CyberSec","description":"Okta: With employees, partners, and customers accessing applications from anywhere, organizations can no longer rely on traditional network-","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/im-cybersec.com\/de\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/","og_locale":"de_DE","og_type":"article","og_title":"Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0 - IM CyberSec","og_description":"Okta: With employees, partners, and customers accessing applications from anywhere, organizations can no longer rely on traditional network-","og_url":"https:\/\/im-cybersec.com\/de\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/","og_site_name":"IM CyberSec","article_published_time":"2026-05-08T10:11:53+00:00","article_modified_time":"2026-05-08T10:13:00+00:00","og_image":[{"width":2000,"height":500,"url":"https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png","type":"image\/png"}],"author":"anita.xd@yahoo.com","twitter_card":"summary_large_image","twitter_misc":{"Verfasst von":"anita.xd@yahoo.com","Gesch\u00e4tzte Lesezeit":"1\u00a0Minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/#article","isPartOf":{"@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/"},"author":{"name":"anita.xd@yahoo.com","@id":"https:\/\/im-cybersec.com\/#\/schema\/person\/881cf8ee4594040f2ee1098fba22983c"},"headline":"Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0","datePublished":"2026-05-08T10:11:53+00:00","dateModified":"2026-05-08T10:13:00+00:00","mainEntityOfPage":{"@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/"},"wordCount":710,"commentCount":0,"image":{"@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/#primaryimage"},"thumbnailUrl":"https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png","articleSection":["UEM"],"inLanguage":"de","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/","url":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/","name":"Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0 - IM CyberSec","isPartOf":{"@id":"https:\/\/im-cybersec.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/#primaryimage"},"image":{"@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/#primaryimage"},"thumbnailUrl":"https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png","datePublished":"2026-05-08T10:11:53+00:00","dateModified":"2026-05-08T10:13:00+00:00","author":{"@id":"https:\/\/im-cybersec.com\/#\/schema\/person\/881cf8ee4594040f2ee1098fba22983c"},"description":"Okta: With employees, partners, and customers accessing applications from anywhere, organizations can no longer rely on traditional network-","breadcrumb":{"@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/#breadcrumb"},"inLanguage":"de","potentialAction":[{"@type":"ReadAction","target":["https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/"]}]},{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/#primaryimage","url":"https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png","contentUrl":"https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png","width":2000,"height":500},{"@type":"BreadcrumbList","@id":"https:\/\/im-cybersec.com\/prepared-for-the-expiration-of-the-secure-boot-windows-uefi-2011-ca\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/im-cybersec.com\/"},{"@type":"ListItem","position":2,"name":"Prepared for the\u00a0expiration\u00a0of the Secure Boot Windows UEFI 2011 CA?\u00a0"}]},{"@type":"WebSite","@id":"https:\/\/im-cybersec.com\/#website","url":"https:\/\/im-cybersec.com\/","name":"IM CyberSec","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/im-cybersec.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"de"},{"@type":"Person","@id":"https:\/\/im-cybersec.com\/#\/schema\/person\/881cf8ee4594040f2ee1098fba22983c","name":"anita.xd@yahoo.com","image":{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/secure.gravatar.com\/avatar\/229e9beba15247a177ba258405a92e675b8a68f26f39e77887a63f4b4203c7a3?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/229e9beba15247a177ba258405a92e675b8a68f26f39e77887a63f4b4203c7a3?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/229e9beba15247a177ba258405a92e675b8a68f26f39e77887a63f4b4203c7a3?s=96&d=mm&r=g","caption":"anita.xd@yahoo.com"},"sameAs":["https:\/\/im-cybersec.com"],"url":"https:\/\/im-cybersec.com\/de\/author\/anita-xdyahoo-com\/"}]}},"uagb_featured_image_src":{"full":["https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png",2000,500,false],"thumbnail":["https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-150x150.png",150,150,true],"medium":["https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-300x75.png",300,75,true],"medium_large":["https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-768x192.png",768,192,true],"large":["https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-1024x256.png",1024,256,true],"1536x1536":["https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-1536x384.png",1536,384,true],"2048x2048":["https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija.png",2000,500,false],"trp-custom-language-flag":["https:\/\/im-cybersec.com\/wp-content\/uploads\/2026\/05\/blog-baner-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-\u2013-kopija-18x5.png",18,5,true]},"uagb_author_info":{"display_name":"anita.xd@yahoo.com","author_link":"https:\/\/im-cybersec.com\/de\/author\/anita-xdyahoo-com\/"},"uagb_comment_info":0,"uagb_excerpt":"Many system administrators may not yet be aware that the Certificate Authority (CA) used to sign the Windows Secure Boot\u00a0Loader\u00a0and the Secure Boot databases is set to expire shortly and must be replaced with a new one. There is a lot of information circulating online about this topic, but most of it is incomplete. Therefore,&hellip;","_links":{"self":[{"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/posts\/3550","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/comments?post=3550"}],"version-history":[{"count":2,"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/posts\/3550\/revisions"}],"predecessor-version":[{"id":3553,"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/posts\/3550\/revisions\/3553"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/media\/3551"}],"wp:attachment":[{"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/media?parent=3550"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/categories?post=3550"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/im-cybersec.com\/de\/wp-json\/wp\/v2\/tags?post=3550"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}