![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
1,993 questions
Hi Linus Thorsell,
Thank you for reaching Microsoft Community.
I would like to know first the reason why we are trying to disable Secure Boot on the device? Is it because that we are trying to install a third-party operating system or due to some issues? Secure Boot is a security feature of the device to avoid vulnerabilities and thus, disabling it is not recommended.
You mentioned also that it states it UEFI settings "Secure Boot is Enabled with custom key configuration", is this device being managed by an organization or company? or is this a company device or a personal device?
Furthermore, since a factory reset was tried already, I suggest that we proceed to a clean installation of Windows on the device through USB Recovery. This option will reimage the entire device and reload Windows including the drivers and firmware. It is the most complete form of Reset and it will wipe out everything on the device. You will need also a 16GB/32GB of flash drive that must be formatted into FAT32 prior to downloading the Recovery Image. See the steps below for guidance.
How to Download, Create and Use a USB recovery drive
To download the Recovery Image:
- You'll need another working device running on Windows.
- Visit the page to Download the recovery image for your Surface
- Sign in with your Microsoft Account
- From the list of Surface devices available, select the device that you need a recovery image for
Please note that while you will only be presented with devices that are currently registered on your account, you will also be presented with the option to get an image for a different type of device. If you try to use this option, you will be prompted to enter the serial number for that device - Download the recovery image using the button on the page
- When the download bar pops up at the bottom of your screen, save the file in a location you will be able to find it.
Format USB Drive:
- Note: Formatting a recovery drive will erase anything that is already stored on your USB drive. Make sure to transfer any important data from your USB drive to another storage device before using it to create a Surface USB recovery drive.
- Insert your USB drive into the USB port of your PC.
- From the desktop, open File Explorer
- Tap and hold or right-click on the USB drive and choose Format
- Select FAT32 as the file system and enter a Volume label to name the USB drive, such as RECOVERY, and then tap or click Start
- Tap or click OK to erase the contents of the USB drive
- Tap or click OK when the format is complete
Create a recovery drive:
- On your Surface or PC, open recovery image that you downloaded by double-clicking it or right click then select Extract and then Extract all.
- Select the USB drive you formatted earlier for the location and click Extract.
Use a USB recovery drive to reset your Surface:
- Shutdown the Surface
- Insert the USB recovery drive into the USB port
- Press and hold the volume-down (-) rocker
- Press and release the power button
- When the Surface logo appears, release the volume-down (-) rocker
- Surface will start the recovery software on the USB recovery drive
- When prompted, choose your language options and keyboard layout
- Select Troubleshoot
- Select Recover from a Drive. Choose Remove Everything and Fully Clean the Drive. Recovering this PC.
- If prompted, select Repartition the drives
- If prompted for BitLocker Key, tap Skip this Drive
Kind regards,
Marrion