Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Secure Boot

This topic describes the secure boot feature and its configuration on the QFX5241 switch.

The QFX5241 switch (QFX5241-32OD, QFX5241-64OD, and QFX5241-64QD) supports the secure boot feature. The secure boot implementation is based on the UEFI 2.4 standard. The BIOS has been hardened and serves as a core root of trust. Implementation of secure boot cryptographically protects the BIOS updates, bootloader, and kernel, preventing tampering. Disabling it risks security and may brick the device if keys are revoked improperly. For more information about secure boot system, see Secure Boot Overview.

Secure Boot feature is enabled by default. It requires no user configuration to implement. No CLI commands are needed to activate this feature. To verify that your device supports secure boot, use the Feature Explorer and search for Secure Boot.