Link to home
Start Free TrialLog in
Avatar of rmessing171
rmessing171Flag for United States of America

asked on

How do I know if my Desktops/Laptops have UEFI and Secure Boot?

We have an enterprise environment with 4000 PCs.  We know all the Desktop/Laptop hardware models.

Is there a way that if we find out the chipset for each PC, then we would know if the PC has UEFI and Secure Boot capabilities?

Any assistance or suggestions would be greatly appreciated!
Avatar of Dr. Klahn
Dr. Klahn

Go to the manufacturer's web site and get the specification sheet for each model.  This is the easy way.

The hard way is to locate one of each model you have, turn it off, turn it on, go into BIOS setup, and see if UEFI is supported as a BIOS option.

Knowing the chipset is unfortunately not helpful in this case.  What that lets you know is whether UEFI is an option in the chipset, but not whether it is actually implemented in the BIOS.
The right way to see if you have UEFi and Secure Boot is going into BIOS and checking there in advanced settings. Depending on vendor and version of BIOS they can be either on main or in advanced settings.
this Article also can be helpful. there are two other methods to determine if a system is using legacy Bios or UEFI.
http://www.thewindowsclub.com/check-if-uefi-or-bios
Avatar of rmessing171

ASKER

Thank you to all that replied and provided suggestions.  Since I have 4000 PCs, it will take alot of time to go to each PC to check for BIOS/UEFI.  Is there an remote or automated way to gather this information from each PC?
Here is a powershell script which works perfectly for me. However it needs that running scripts in powershell is enabled on the machines.
https://gallery.technet.microsoft.com/scriptcenter/Determine-UEFI-or-Legacy-7dc79488
noxcho - Thank you for sending along!

Quick questions:

1. Did you remotely deploy this powershell script to all PCs using SCCM?

2. Will this script report if the PC has BIOS or UEFI enabled at the time the script is run, or will it report that the PC has BIOS and UEFI capability?

Thank you for your assistance!
I checked it by running it locally. So I think running it using SCCM should work as well.
It shows that UEFI or BIOS is enabled. Because it collects information from Windows interface.
Thank you!  Just curious if you know of a tool that I could deploy that would report back if the PC has UEFI capability.  This would help me greatly since all of my PCs are BIOS enabed.

What are your thoughts?
I think such tool does not exist. I am working much with PCs, installations on different PCs but never heard about of such tool.
ASKER CERTIFIED SOLUTION
Avatar of rmessing171
rmessing171
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
This found solution was exactly was what I was seeking,