What Linux distro are you using and can you share your agent.properties,
particularly the UEFI lines?
For reference, on EL it should look something like this (make sure the
files exist!)
guest.nvram.template.secure=/usr/share/edk2/ovmf/OVMF_VARS.secboot.fd
guest.nvram.template.legacy=/usr/share/edk2/ovmf/OVMF_VARS.fd
guest.nvram.path=/var/lib/libvirt/qemu/nvram/
guest.loader.secure=/usr/share/edk2/ovmf/OVMF_CODE.secboot.fd
guest.loader.legacy=/usr/share/edk2/ovmf/OVMF_CODE.cc.fd
On Debian/Ubuntu:
guest.nvram.template.secure=/usr/share/OVMF/OVMF_VARS_4M.ms.fd
guest.nvram.template.legacy=/usr/share/OVMF/OVMF_VARS_4M.fd
guest.nvram.path=/var/lib/libvirt/qemu/nvram/
guest.loader.secure=/usr/share/OVMF/OVMF_CODE_4M.secboot.fd
guest.loader.legacy=/usr/share/OVMF/OVMF_CODE_4M.fd
AFAIK Windows Server does not require a TPM btw.
On 2025-03-26 14:09, S.Fuller wrote:
Wei,
Thanks for the reply. In this particular case, we have added that
setting,
along with the extraconfig settings for the tpm device and back end. In
this case, it's a Windows server, and while it will boot to recovery
mode,
it will not boot to the OS. I'm trying to figure out if there may be
something we're missing in our restore process, or something other
steps
that we may need to follow to get this to work.
- Steve
On Wed, Mar 26, 2025 at 8:18 AM Wei ZHOU <ustcweiz...@gmail.com> wrote:
Hi,
You can stop the VM, add a vm setting UEFI=SECURE, then start the vm
-Wei
On Wed, Mar 26, 2025 at 1:00 PM S.Fuller <steveful...@gmail.com>
wrote:
> Is there anything to look out for or a process to follow when migrating
> Secure boot VMs from other platforms to cloudstack? Having no issues
> starting up new VMs within my environment, but for VMs moved from other
> systems they start, but in the case of WIndows VMs, they fail to boot and
> then end up booting into the recovery system.
>
> --
> Steve Fuller
> steveful...@gmail.com
>
