Avatar of rmessing171
rmessing171
Flag for United States of America asked on

How do I know if my Desktops/Laptops have UEFI and Secure Boot?

We have an enterprise environment with 4000 PCs.  We know all the Desktop/Laptop hardware models.

Is there a way that if we find out the chipset for each PC, then we would know if the PC has UEFI and Secure Boot capabilities?

Any assistance or suggestions would be greatly appreciated!
HardwarePC* Unified Extensible Firmware Interface (UEFI)

Avatar of undefined
Last Comment
rmessing171

8/22/2022 - Mon
Dr. Klahn

Go to the manufacturer's web site and get the specification sheet for each model.  This is the easy way.

The hard way is to locate one of each model you have, turn it off, turn it on, go into BIOS setup, and see if UEFI is supported as a BIOS option.

Knowing the chipset is unfortunately not helpful in this case.  What that lets you know is whether UEFI is an option in the chipset, but not whether it is actually implemented in the BIOS.
noxcho

The right way to see if you have UEFi and Secure Boot is going into BIOS and checking there in advanced settings. Depending on vendor and version of BIOS they can be either on main or in advanced settings.
Ramin

this Article also can be helpful. there are two other methods to determine if a system is using legacy Bios or UEFI.
http://www.thewindowsclub.com/check-if-uefi-or-bios
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck
rmessing171

ASKER
Thank you to all that replied and provided suggestions.  Since I have 4000 PCs, it will take alot of time to go to each PC to check for BIOS/UEFI.  Is there an remote or automated way to gather this information from each PC?
noxcho

Here is a powershell script which works perfectly for me. However it needs that running scripts in powershell is enabled on the machines.
https://gallery.technet.microsoft.com/scriptcenter/Determine-UEFI-or-Legacy-7dc79488
rmessing171

ASKER
noxcho - Thank you for sending along!

Quick questions:

1. Did you remotely deploy this powershell script to all PCs using SCCM?

2. Will this script report if the PC has BIOS or UEFI enabled at the time the script is run, or will it report that the PC has BIOS and UEFI capability?

Thank you for your assistance!
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
noxcho

I checked it by running it locally. So I think running it using SCCM should work as well.
It shows that UEFI or BIOS is enabled. Because it collects information from Windows interface.
rmessing171

ASKER
Thank you!  Just curious if you know of a tool that I could deploy that would report back if the PC has UEFI capability.  This would help me greatly since all of my PCs are BIOS enabed.

What are your thoughts?
noxcho

I think such tool does not exist. I am working much with PCs, installations on different PCs but never heard about of such tool.
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy
ASKER CERTIFIED SOLUTION
rmessing171

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
rmessing171

ASKER
This found solution was exactly was what I was seeking,