Secure Boot - Invalid AMI Test PK

CDN-USR

Good day,

Upon enabling Secure Boot in the BIOS, I observed that our EQ13 devices are showing an invalid AMI Test PK.

I have already flashed the latest BIOS available through this support channel (version 2.22.1293), but the issue persists.

Could you please provide guidance on how to obtain trusted keys for these devices?

Thank you. Image description

support13

CDN-USR
Sorry, may I ask what version of your BIOS is?
Please repeatedly press delete key as soon as you turn on the PC, go to BIOS. Please send us a picture of the Main page, we will check it for you.

CDN-USR

It’s posted in text and in the screenshot in my initial post. Version: 2.22.1293

support13

CDN-USR
Sorry, is your BIOS version V108?
Our R&D personnel need to confirm to see if there is a BIOS update that can solve the problem.

CDN-USR

Image description

I’m pretty sure it’s version 2.22.1293.

CDN-USR

I did get BIOS Version: MINISF003 installed, which I found through the Blog.

The key is still invalid, however.

support13

CDN-USR
We are truly sorry. We would like to confirm

The information you provided earlier described your machine as EQ13, but from your BIOS page, it can be seen that it is of the MINI series.

May I ask which model of your machine is?

So that we can better help you.

Or please send us a picture of SN on the bottom of the PC to check.

CDN-USR

It is indeed a “MINI S” not a EQ13. My apologies.

support13

CDN-USR
Ok. It doesn’t matter.

May I ask what system you are using?

This needs to be confirmed and whether it has been upgraded.

Also, did you update the BIOS file I sent you via private message before?

CDN-USR

The BIOS file you sent via private message has been flashed, and still has the Test PK.

Here are three fresh pics of the bottom of the system, the BIOS main page after flash and the SecureBoot page showing the invalid AMI Test PK.

Also, if you run the MINISF003.bin through https://pk.fail, it outputs:

Binary Risk Intelligence

Scan result: MINISF003.bin
sha256: f0013501ccec353e8eea80bb8a0ee7db9c6fdc2cc6e808b00da270efb70b7dab
DETECTED PKfail untrusted certificate
Certificate:
Issuer: CN=DO NOT TRUST - AMI Test PK
Subject: CN=DO NOT TRUST - AMI Test PK
Serial: 08:c2:d1:c3:6c:9b:51:4f:b3:7c:6a:02:08:12:cd:59

Image description

Looking forward to your reply.

support13

CDN-USR
Thank you for your detailed information.

Sorry, we can’t tell from the information you provided what system you are using.

Please provide a screenshot of the system version.

Thank you for your cooperation.

CDN-USR

Product: Mini PC
SN: BN1505HH92454 MINIS13-A-161TBSD0W64PRO-B/XB
BIOS Version: MINISF003

All of this information is detailed in this thread. What screenshot do you need exactly?

support13

CDN-USR
Sorry to have bothered you.
We would like to know whether your system is Windows or Ubuntu?

CDN-USR

Ubuntu

support13

CDN-USR
Ok, we have already given feedback to the R&D personnel.

If there are any updates to the solution, we will notify you in a timely manner.

Thank you for your patience.

CDN-USR

It’s been 14 days now. Has your R&D personnel managed to correct this issue yet?

support13

CDN-USR
Sorry to have kept you waiting.

The R&D personnel are testing how to upgrade the BIOS to solve this problem.

We will inform you of the result.

Thank you for your patience.