• ×
    Information
    Need Windows 11 help?
    Check documents on compatibility, FAQs, upgrade information and available fixes.
    Windows 11 Support Center.
  • post a message
  • ×
    Information
    Need Windows 11 help?
    Check documents on compatibility, FAQs, upgrade information and available fixes.
    Windows 11 Support Center.
  • post a message
Guidelines
Join the HP Community Solve‑a‑thon | Help Others & Share Your Solutions | Live on Zoom | 2:30 PM to 2:30 AM IST | Every Wednesday Click here to know more

‎05-07-2026 12:58 AM

HP Recommended

Hello HP,

we activated  Secure Boot Certificate Deployment  with GPO and now we see isues withe HP 8000 G6 DM and TWR with BIOS S01 Ver. 02.25.00 which stuck in BitLocker Recovery Screen.

We let the computers search every month for new BIOS and drivers from Microsofts Update Catalog and in April 2026 BIOS S01 Ver. 02.25.00 was installed. Now I cannot find this version anymore on HPs Support HomePage and also not at Microsofts Update catalog.

Is there a known issue with that BIOS Version? How can I do a (scripted) downgrade to Version 02.24.00 ?

Thankks fro your reply!

Reply
1 person had the same question
1 ACCEPTED SOLUTION

Accepted Solutions

‎05-11-2026 05:53 AM

HP Recommended

Hello, I  got a feedback from our HP customer service.

BIOS Version 2.25 has  a bug and will be updated in next Version which should be released at ~20. May 2026 .

In the meanwhile we have to turn on following on HP 800 G6 BIOS Setting for Secure Boot.secureboot.png

We do this with HP BCU with following  text config file:

BIOSConfig 1.0
Windows UEFI CA 2023
Disable
*Enable
Microsoft Option ROM UEFI CA 2023
Disable
*Enable
Microsoft UEFI CA 2023
Disable
*Enable
Enable MS UEFI CA key
No
*Yes
We deploy this using a SCCM Tasksequence with CommandLine, because the import wiht HP BCU using PowerShell always failed with the correct BIOS password.
Good Luck to all others who have such issue.

View solution in original post

Reply
Was this reply helpful? Yes No
2 REPLIES 2

‎05-10-2026 09:35 AM

HP Recommended
We hit the same issue on HP EliteDesk 800 G6 after Secure Boot certificate update. Devices started prompting for BitLocker recovery after reboot.
In our case, this was triggered by the Secure Boot DB/KEK update in combination with existing BitLocker protection.
Workaround that worked for us:
- Temporarily suspend BitLocker protection before applying Secure Boot/BIOS related updates (e.g. via manage-bde or similar method)
- Apply the update
- Resume BitLocker after reboot

For already affected devices, recovery key entry + reboot cleared the state.
We also limited rollout to specific device models to avoid broad impact.
We observed this on fully updated systems (latest BIOS and Windows updates), primarily on G6 models.
Reply
1 person found this reply helpful
Was this reply helpful? Yes No

‎05-11-2026 05:53 AM

HP Recommended

Hello, I  got a feedback from our HP customer service.

BIOS Version 2.25 has  a bug and will be updated in next Version which should be released at ~20. May 2026 .

In the meanwhile we have to turn on following on HP 800 G6 BIOS Setting for Secure Boot.secureboot.png

We do this with HP BCU with following  text config file:

BIOSConfig 1.0
Windows UEFI CA 2023
Disable
*Enable
Microsoft Option ROM UEFI CA 2023
Disable
*Enable
Microsoft UEFI CA 2023
Disable
*Enable
Enable MS UEFI CA key
No
*Yes
We deploy this using a SCCM Tasksequence with CommandLine, because the import wiht HP BCU using PowerShell always failed with the correct BIOS password.
Good Luck to all others who have such issue.
Reply
Was this reply helpful? Yes No
Warning
Be alert for scammers posting fake support phone numbers and/or email addresses on the community.
If you think you have received a fake HP Support message, please report it to us by clicking on "Flag Post".
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.
Didn't find what you were looking for? Ask the community
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the <a href="https://www8.hp.com/us/en/terms-of-use.html" class="udrlinesmall">Terms of Use</a> and <a href="/t5/custom/page/page-id/hp.rulespage" class="udrlinesmall"> Rules of Participation</a>.