Hello
I created an image for Dell Latitude 10 tablets, I have configured it to enable Bitlocker automatically, unfortunately Dell have release a new version of BIOS (A05) which stops me from enabling Bitlocker unless Secure Boot is disabled, BIOS (A04) doesn't have this restriction/problem but when I try to downgrade the BIOS I get a message saying I can't downgrade and Dell support say it's not possible to downgrade the BIOS We have just purchased 100 new tablets and they all have A05 BIOS installed. Is there a way to enable/Disable Secure Boot using a script, I found the following but it doesn't work, I think I need to install Dell open manage to get it to work. I have raised this issue with Dell support but I doubt they will fix this before we deploy the 100 tablets.
Thanks
Jon
'**********************************************************************
'*** Name: SampleSecureBoot.vbs
'*** Purpose: To enable Secure Boot.
'*** Usage: cscript.exe //nologo SampleSecureBoot.vbs <systemname>
'***
'*** This sample script is provided as an example only, and has not been
'*** tested, nor is warranted in any way by Dell; Dell disclaims any
'*** liability in connection therewith. Dell provides no technical
'*** support with regard to such scripting. For more information on WMI
'*** scripting, refer to applicable Microsoft documentation.
'*** NOTE: Replace <Password> in line 53 (inside the quotes)
'*** with the desired values if there is any password set in the system.
'*** If both passwords(Admin and Boot) are set please replace it with Admin Password.
'*** If there is no password set in the system please leave it as empty.
'**********************************************************************
Option Explicit
'*** Declare variables
Dim strNameSpace
Dim strComputerName
Dim strClassName
Dim strKeyValue
Dim objInstance
Dim strPropName
Dim strPropValue
Dim oInParams
Dim objWMIService
Dim returnValue
Dim ColSystem
Dim strAttributeName(2)
Dim strAttributeValue(2)
Dim strAuthorizationToken
'*** Check that the right executable was used to run the script
'*** and that all parameters were passed
If (LCase(Right(WScript.FullName, 11)) = "wscript.exe" ) Or _
(Wscript.Arguments.Count < 1) Then
Call Usage()
WScript.Quit
End If
'*** Initialize variables
strNameSpace = "root/dcim/sysman"
strComputerName = WScript.Arguments(0)
strClassName = "DCIM_BIOSService"
strAttributeName(0) = "Secure Boot"
'*** All possible values for Secure Boot are as follows:
'*** 2 = Enable
strAttributeValue(0) = "2"
strAuthorizationToken = ""
returnValue = 0
'*** Retrieve the instance of DCIM_BIOSService class
Set objWMIService = GetObject("winmgmts:{impersonationLevel=impersonate," &_"AuthenticationLevel=pktprivacy}\\" & strComputerName & "\" &_
strNameSpace)
Set ColSystem=objWMIService.execquery ("Select * from " & strClassName)
For each objInstance in ColSystem
Set oInParams= objInstance.Methods_("SetBIOSAttributes").InParameters.SpawnInstance_
oInParams.AttributeName = strAttributeName
oInParams.AttributeValue = strAttributeValue
oInParams.AuthorizationToken = strAuthorizationToken
Set returnValue = objInstance.ExecMethod_("SetBIOSAttributes", oInParams)
Next
'*** If any errors occurred, let the user know
If Err.Number <> 0 Then
WScript.Echo "Enabling Secure Boot failed."
End If
'*** Sub used to display the correct usage of the script
Sub Usage()
Dim strMessage
strMessage = "incorrect syntax. You should run: " & vbCRLF & _"cscript.exe /nologo SampleSecureBoot.vbs <systemname>"
WScript.Echo strMessage
End Sub