Scripted way to determine if the UEFI is password protected RRS feed

  • Question

  • I was wondering if there is a scripted way to determine if the UEFI has been password protected. Ideally, this would be run through Powershell \ VBS \ WMI and return a value to show whether the password protection is on. I do not need to see or update the password value, just verify that it has been set.

    I'm looking into this as part of evidencing that workstations in my organization have been properly secured. Part of the security we want to put into place is limiting boot device media, but placing those limits does no good if they can be changed.

    Any advice in the right direction is greatly appreciated.  Thank you in advance.

    • Moved by Bill_Stewart Monday, June 6, 2016 7:42 PM Abandoned
    Friday, April 15, 2016 8:38 PM