Edit - Super User

You are not logged in. Your edit will be placed in a queue until it is peer reviewed.

We welcome edits that make the post easier to understand and more valuable for readers. Because community members review edits, please try to make the post substantially better than how you found it, for example, by fixing grammar or adding additional resources and hyperlinks.

Thanks for the insights, it answers all of my questions. I just can't stand going into my BIOS every time I change my OS as I'm rotating it quite often between work and gaming. Is there any convenient way that you are aware of like GRUB to make the change while keeping PCR 4 and 7 activated ?
– MathisGauthey
Commented Jul 20, 2022 at 13:13
I wasn't talking about going into Setup and changing the boot order, I was talking about the "direct" menu that you get when pressing F8 or Esc (or F11, or F10, or...) But if you don't want to use that, then the easiest alternative is to have your current OS tell UEFI to directly reboot into another OS without using the boot menu. Assuming Linux (GRUB) is the default option, run efibootmgr to find the Windows boot entry ID, run efibootmgr --bootnext 0002 to set it as the "next boot" entry, and reboot as usual.
– grawity_u1686
Commented Jul 20, 2022 at 13:19
PCR4 should mostly work with GRUB, normally you will only need the BitLocker recovery if something changes – e.g. if GRUB gets updated, or if Windows BOOTMGR gets updated. On the other hand, PCR7 will never work with GRUB or any other external bootloader (even if it's Secure Boot-signed), as BitLocker is intentionally programmed to only rely on PCR7 if it indicates that only the "Windows CA" was used in the boot process. (That's mentioned in Event Viewer and in the MS docs somewhere.)
– grawity_u1686
Commented Jul 20, 2022 at 13:21
PCR4 used to work with just the dual drive setup, not the encrypted one. I guess something keeps changing in grub, maybe the Linux mint theme is doing something like that. Or maybe it is related to the fact that GRUB autosave the last boot option and pre-selects it, I think this is related to that. Anyway, I'll keep it deactivated as I now know the impact it has, it's not worth the extra complexity for my setup ! Thanks !
– MathisGauthey
Commented Jul 21, 2022 at 17:19

Add a comment |

Correct minor typos or mistakes
Clarify meaning without changing it
Add related resources or links
Always respect the author’s intent
Don’t use edits to reply to the author

create code fences with backticks ` or tildes ~
```
like so
```
add language identifier to highlight code
```python
def function(foo):
print(foo)
```
put returns between paragraphs
for linebreak add 2 spaces at end
_italic_ or **bold**
indent code by 4 spaces
backtick escapes `like _so_`
quote by placing > at start of line
to make links (use https whenever possible)
<https://example.com>
[example](https://example.com)
<a href="https://example.com">example</a>

formatting help »
answering help »