DrJBHL

New Secure Boot Certificates for Older Computers

▼

New Secure Boot Certificates for Older Computers

If you're prior to 2025, update before June 2026 expiry

https://techcommunity.microsoft.com/blog/windows-itpro-blog/act-now-secure-boot-certificates-expire-in-june-2026/4426856

May 15, 2026 2:30 AM from

Stardock Forums

For folks with Windows computers from before 2025 and non-copilot, secure boot certificates will be expiring in June 2026 including W11 and W10.

Affected: Physical and virtual machines (VMs) on supported versions of Windows 10, Windows 11, Windows Server 2025, Windows Server 2022, Windows Server 2019, Windows Server 2016, Windows Server 2012, Windows Server 2012 R2—the systems released since 2012, including the long-term servicing channel (LTSC)

Not affected: Copilot+ PCs released in 2025

Important: Check with your OEMs on the latest available OEM firmware. Apply any available firmware updates to your Windows systems before applying the new certificates. In the Secure Boot flow, firmware updates from OEMs are the foundation for Windows Secure Boot updates to apply correctly.

Please read the external link (even though it's a year old, it's valid) as your system requires the updated certificate. You may have been updated already, but it behooves one to check. How to do so is mentioned in the article.

6,255 views 27 replies +1

Reply #26 May 31, 2026 12:58 AM from

WinCustomize Forums Top

I might be worse off than any of you. I have an older HP computer running Windows 10 IoT Enterprise LTSC. I have not had the desire or need to buy a new computer because what I have works well.
I just tried to enable secure boot in the BIOS, but when I did, the computer would not boot at all. What made my attempt even worse was that after enabling secure boot, my display drivers would not load and the computer would just send a flickering screen to my monitor. Luckily, I had enough sense to open the computer and reset the BIOS with the CMOS button, and I am glad it had such a button because some don't.

Reply #27 May 31, 2026 8:46 AM from

WinCustomize Forums Top

Junior,

That's a scarry moment for sure! There is no requirement to activate secure boot for Windows 10, so I would just let it be. There probably hasn't been a BIOS update for that motherboard in quite a while. I built my machine in 2017 and the OEM has not provided an update since 2022. As long as you are vigilant with security and keep Windows 10 updated you should be fine.

MY wife's computer, a DELL from 2015 died recently and we replaced it with one of those mini PC's. It's really a great computer. The mini PC's are really just laptops without a monitor or a battery. And it takes up no desk space at all.

Welcome Guest! Please take the time to register with us.

Richer content, access to many features that are disabled for guests like commenting and posting on the forums.
Access to a great community, with a massive database of many, many areas of interest.
Access to contests & subscription offers like exclusive emails.
It's simple, and FREE!