All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Microsoft UEFI CA certificate is rotating in June 2026, not expiring — existing Linux systems will keep booting

By

Arsalan Zaidi

3h ago· 5 min readenInsight
technologyprogramming

Summary

The article clarifies a widespread misconception about the Microsoft UEFI CA certificate expiring in June 2026. It explains that Microsoft is performing a deliberate key rotation — issuing a new UEFI CA certificate and transitioning future shim signing to the new key — rather than letting the certificate expire and breaking Linux Secure Boot systems. Existing Linux systems will continue to boot normally, and the article provides a planning checklist for cloud VM operators to manage the transition smoothly.

Source

bskyMicrosoft UEFI CA certificate is rotating in June 2026, not expiring — existing Linux systems will keep bootingciq.com

Key quotes

· 4 pulled
The Microsoft UEFI CA certificate that underpins Secure Boot signing for Linux has a June 2026 expiry date, and compliance scanners and advisories are treating it like a deadline.
It is not. Here is what is actually happening.
Microsoft is performing a deliberate key rotation. They are issuing a new UEFI CA certificate and transitioning all future shim signing to that key.
The June 2026 date marks when Microsoft will stop signing new
Snippet from the RSS feed
The Microsoft UEFI CA certificate rotates in June 2026. Existing Linux systems keep booting. Cloud VM operators get a planning checklist.

You might also wanna read

Impending Expiration of Microsoft's Key for Linux Secure Boot Raises Concerns

Linux users with Secure Boot enabled may face issues as Microsoft's key used for signing the UEFI bootloader is set to expire in September.

lwn.net·11mo ago

Impending Issue for Linux Users with Secure Boot: Microsoft Key Expiration

Linux users with Secure Boot enabled may face issues as the key from Microsoft used to sign the UEFI bootloader is set to expire in Septembe

lwn.net·11mo ago

Linux Secure Boot faces disruption as Microsoft signing key nears September expiration

Linux users with Secure Boot enabled rely on a Microsoft key for booting that expires in September. Microsoft will stop using this key to si

lwn.net·2d ago

Understanding Secure Boot Certificate Rollover and Its Impact on Linux Users

The article discusses the implications of Secure Boot certificate rollover, particularly focusing on the claim that Linux users rely on a Mi

mjg59.dreamwidth.org·10mo ago

Personal Transition to Linux Desktop: Planning Full Migration from Windows by 2026

The author announces that 2026 will be their personal 'Year of the Linux Desktop,' having not booted into Windows for over three months on t

xeiaso.net·5mo ago

Microsoft Office 2019 and 2021 for Mac to enter view-only mode in July 2026 due to certificate expiration

Microsoft has scheduled a remote degradation of perpetually-licensed Office 2019 and 2021 for Mac and iOS, set for July 13, 2026, when a lic

consumerrights.wiki·25d ago

Comments

Sign in to join the conversation.

No comments yet. Be the first.