Daniel Micanek virtual Blog – Like normal Dan, but virtual.
The deployment wizard for VMware Cloud Builder (CB) can accept either an XLSX or JSON configuration file that describes your desired VMware Cloud Foundation (VCF) deployment. Interestingly enough, only an XLSX template is available for users to download, edit and then provide that back as user […]
After installing Windows Server 2022 update KB5022842 (OS Build 20348.1547), guest OS can not boot up when virtual machine(s) configured with secure boot enabled running on vSphere ESXi 6.7 U2/U3 or vSphere ESXi 7.0.x.
In VM vmware.log, there is ‘Image DENIED’ info like the below:
2023-02-15T05:34:31.379Z In(05) vcpu-0 - SECUREBOOT: Signature: 0 in db, 0 in dbx, 1 unrecognized, 0 unsupported alg.
2023-02-15T05:34:31.379Z In(05) vcpu-0 - Hash: 0 in db, 0 in dbx.
2023-02-15T05:34:31.379Z In(05) vcpu-0 - SECUREBOOT: Image DENIED.#vim-cmd vmsvc/getallvms | grep -i "VM_Name"/vmfs/volumes/xxxxxxxx-xxxxxxx-c1d2-111122223333/vm1/vm1.vmx
/vmfs/volumes/xxxxxxxx-xxxxxxx-c1d2-111122223333/vm1/vmware.logCurrently there is no resolution for virtual machines running on vSphere ESXi 6.7 U2/U3 and vSphere ESXi 7.0.x. However the issue doesn’t exist with virtual machines running on vSphere ESXi 8.0.x.
Note: vSphere ESXi 6.7 is End of general Support. For more information, see The End of General Support for vSphere 6.5 and vSphere 6.7 is October 15, 2022.
There are three methods to avoid this issue
See the Microsoft article for details on the updates within the patch release
To disable virtual machine “Secure Boot “option, please follow the below steps:
Uninstalling the KB5022842 patch will not resolve the issue. If the Virtual machine has already been updated, then the only available options are
This Blog will Guide you through the complete Installation from NAPP without using Tanzu and NSX Advanced Load Balancer. If you have Tanzu and NSX Advanced Load Balancer installed, I highly recommend to use your existing Tools! by Daniel Stich.
No more NSX-V & NSX-T…!!! It’s only NSX from version 4 onwards. This series of NSX 4.0 includes following parts. […]
Introduction: One of my NSX peers was recently working on an IP address overlap issue that helped lead to a better understanding of routing behaviour within an NSX environment. The Scenario: In this corner case scenario there is IP address overlap between these two subnets: The NSX environment, [..]
Engineering article from Ashutosh Sarawat describing the benefits of running vVols on NVMe-FC.
I recently came to learn about a really cool project called Tiny 11 which is a stripped down version of Windows 11 Pro 22H2 that can run with just 2GB of memory and 8GB of storage. While you would probably not use this for production workloads, it could be interesting for those with homelabs and […]
The installation of the Operating System image will be denied and “SECUREBOOT: Image DENIED.” will be reported in vmware.log.
Below goes the list of the impacted Linux Operating Systems.
This is caused due to the Secure Boot deny list (dbx) is updated to prevent vulnerable bootloaders from being used. For more information, refer to VMware response to GRUB2 security vulnerability CVE-2020-10713 (80181)
Create the Virtual Machine with Secureboot disabled instead.
A deep dive into vVols performance improvement from vVols engineer Yogender Solanki
