how to fix this Secure Boot certificates | Razer Insider
Skip to main content
Question

how to fix this Secure Boot certificates

  • December 8, 2025
  • 0 replies
  • 1876 views
P

!--startfragment>

how to fix this Secure Boot certificates have been updated but are not yet applied to the device firmware. Review the published guidance to complete the update and ensure full protection. This device signature information is included here. DeviceAttributes: BaseBoardManufacturer:Razer;FirmwareManufacturer:Razer;FirmwareVersion:1.03;OEMModelNumber:Blade 16 - RZ09-0510;OEMModelBaseBoard:SO6100;OEMModelSystemFamily:1A58300A Razer Blade;OEMManufacturerName:Razer;OEMModelSKU:RZ09-051021N4;OSArchitecture:amd64; BucketId: 121954a5453464cf5283ad543028942483c61fd6aae2ef6a7c25d4fd1b3a8ed8 BucketConfidenceLevel:

!--endfragment>

I’m on the latest bios update from 2023

!--startfragment>

Quick Fix: To resolve the Secure Boot certificate warning on your Razer Blade 16, you need to apply the latest BIOS and firmware updates from Razer, and ensure the Microsoft Secure Boot certificate update is installed and committed to the device firmware. This requires both vendor firmware updates and Windows-side certificate application.

 

🔧 Step-by-Step Guidance

1. Understand the Issue

  • The message means Windows has downloaded new Secure Boot certificates, but they are not yet written into your UEFI firmware.
  • Without applying them, your system may not be fully protected against revoked or expired bootloaders.

2. Apply Razer Firmware Updates

Razer has published specific updates for the Blade 16 series:

  • BIOS Updater (latest version v2.03 or newer)
  • Customer Firmware Updater (v3)
  • EC/Keyboard/vBIOS Firmware Updater (v2.01)
  • PD Firmware Updater (09v4)

👉 You can find these on Razer’s support page for Blade 16(6).
Make sure to install all required firmware packages in sequence, starting with BIOS, then EC/Customer Firmware, then PD.

3. Apply Microsoft Secure Boot Certificate Update

  • Microsoft has issued Secure Boot certificate updates to replace expiring 2011-era certificates with the 2023 chain.
  • Run Windows Update and ensure KB5062710 or later Secure Boot updates are installed.
  • After installation, reboot your system. Windows will attempt to commit the new certificates into UEFI.

4. Verify Certificate Status

You can check if the certificates are applied:

 

Confirm-SecureBootUEFI

5. If Still Not Applied

 

✅ Summary Table

 

     
     
     
  Confirm-SecureBootUEFI  
     

 

Action for you: Download and apply the latest BIOS and firmware updates from Razer, then make sure Windows Update has installed the Secure Boot certificate patch. After reboot, confirm Secure Boot is active and certificates are committed.

Would you like me to walk you through the exact download links and update order for your Blade 16 (RZ09-0510) so you can apply them without missing a step?

  • Run PowerShell with admin rights:
    • This should return True if Secure Boot is active.
    • To check certificate status, use Microsoft’s guidance or scripts like Check_EFIBootFile.ps1.
    • Event ID 1801 warnings may persist if the firmware update hasn’t committed the DBX (forbidden signature database).
    • In that case:
    • Re-run the Razer firmware updater.
    • Ensure BitLocker is suspended before BIOS updates.
    • Perform a full shutdown and cold boot after updates.
    !--endfragment>

    CookiesCookie settingsAccessibility statement