Event details

Whether you're actively managing device security or planning your next steps, this AMA is your opportunity to connect directly with Microsoft experts and get clear, actionable guidance on updating Secure Boot certificates and monitoring status of update efforts.

Bring your questions on rollout plans, challenges, reporting, and best practices. We’ll cover real-world scenarios, common challenges, and the steps you can take to confidently navigate the process.

If Secure Boot certificate updates are on your project list—or you just want to make sure you’ve updated certificates successfully across your estate—this live, interactive event will help you move forward with clarity and confidence.

Browse our most recent AMAs

Get started with these helpful resources

Heather_Poulsen
Published May 21, 2026
AMA

2 Comments

  • csmith-norwood's avatar
    csmith-norwood
    Brass Contributor
    May 28, 2026

    Can we get in plain english how everything is going to be affected? It is near impossible to get a clear picture on how, when, and what is happening and going to happen. Seems like we are spending a lot of time chasing our tails on this, and we have little to no control over what and when we can do anything about this.

  • VicMastandrea's avatar
    VicMastandrea
    Occasional Reader
    May 26, 2026

    We tested mitigating BlackLotus (Windows UEFI 2011 -> DBX). 0x80 applied to test devices, then a pilot devices. No problems.


    It was decided to not mitigate BlackLotus. Is there a way to remove the Windows UEFI 2011 from the DBX, outside of booting into BIOS and reseting Secure Boot keys to factory defaults?