Share via

Secure Boot _ expiring June 2026

Philemon Elaigwu 0 Reputation points
2026-03-02T16:14:39.16+00:00

Hi Team,

We are reviewing the recent Secure Boot update and would like clarification on its applicability to Azure Virtual Machine Generation 1 (Gen1) instances.

Since Gen1 VMs use BIOS-based boot rather than UEFI, can you confirm whether this update has any impact or if it only applies to Generation 2 VMs?

We want to ensure there is no unintended boot or compatibility risk before deployment.

Thank you in advance for your guidance.

Philemon I Elaigwu

Azure Virtual Machines
Azure Virtual Machines

An Azure service that is used to provision Windows and Linux virtual machines.

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Ankit Yadav 12,205 Reputation points Microsoft External Staff Moderator
    2026-03-02T16:29:49.4266667+00:00

    Hello Philemon,

    Thank you for reaching out regarding the Secure Boot update expiring in June 2026.

    This update applies only to Azure Virtual Machine Generation 2 (Gen2) instances. Secure Boot is a UEFI-based feature, and UEFI is supported only on Gen2 VMs, typically when using the Trusted Launch security type.

    Generation 1 (Gen1) VMs use legacy BIOS-based boot firmware and do not support UEFI or Secure Boot. Because Secure Boot is not present or configurable on Gen1 VMs, the upcoming Secure Boot update does not apply to them.

    There is no expected boot impact, firmware change, or compatibility risk for Gen1 VMs related to this Secure Boot update. From a Microsoft Learn documentation standpoint, the feature is not applicable to Gen1.

    You can proceed with Gen1 VM deployments without concern regarding this Secure Boot update.

    Reference:

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.