proxmox-mirrors/fwupd
1
0
Fork 0
mirror of https://git.proxmox.com/git/fwupd synced 2025-08-03 19:59:26 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
0230e03562
fwupd/data/bios-settings.d
History
Mario Limonciello 04c2186edc Add support for loading default BIOS settings policy 
A user can place a JSON file in /etc/fwupd/bios-settings.d/ with
the default desired policy for the machine.

fwupd will load this policy on startup to ensure BIOS settings
are set as desired by the system administrator.
2022-08-24 12:59:42 -05:00
..
meson.build Add support for loading default BIOS settings policy 2022-08-24 12:59:42 -05:00
README.md Add support for loading default BIOS settings policy 2022-08-24 12:59:42 -05:00

README.md

BIOS Settings

On supported machines fwupd can enforce BIOS settings policy so that a user's desired settings are configured at bootup and prevent fwupd clients from changing them.

JSON policies

A policy file can be created using fwupdmgr. First determine what settings you want to enforce by running:

# fwupdmgr get-bios-settings

After you have identified settings, create a JSON payload by listing them on the command line. Any number of attributes can be listed. For example for the BIOS setting WindowsUEFIFirmwareUpdate you would create a policy file like this:

# fwupdmgr get-bios-settings --json WindowsUEFIFirmwareUpdate > ~/foo.json

Now examine ~/foo.json and modify the BiosSettingCurrentValue key to your desired value.

Lastly place this policy file into /etc/fwupd/bios-settings.d. Any number of policies is supported, and they will be examined in alphabetical order. The next time that fwupd is started it will load this policy and ensure that no fwupd clients change it.