Forum Discussion
How do I just block/prevent the Secure Boot update, without going into the BIOS?
Event viewer is populated with many Error messages, that "The Secure Boot update failed to update a Secure Boot variable with error Secure Boot is not enabled on this machine."
Searching how to prevent/block this update only shows results such as for disabling or enabling Secure Boot in the BIOS (or, sometimes on answers.microsoft.com, its typical recourse to doing a repair or clean install). However, I cannot find anyway on how to block/prevent this update. Of course, I find MS still trying to install updates even though they have been paused for 35 days.
1 Reply
1. Use the Group Policy Editor:
Navigate to Computer Configuration > Administrative Templates > Windows Components > Windows Update > Manage updates provided from Windows Update.
Enable “Do not include driver updates with specific update types” and select “Safely initiate updates”.
2. Using Registry Editor: Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate.
Create ExcludeWUDriversInQualityUpdate and set the value to 1.
Pause updates: Pause updates in Settings > Windows Update.
3. Use a third-party tool, such as Windows Update Blocker, to block updates.
4. Contact Microsoft Support: Submit an issue and attach a screenshot.
