Documentation: Missing information regarding deploying UEFI 'enabled' hosts #7126
Description
ISSUE TYPE
- Documentation Report
COMPONENT NAME
CLOUDSTACK VERSION
CONFIGURATION
OS / ENVIRONMENT
SUMMARY
As of know the CS documentation currently only has minimal information regarding the configuration of UEFI / Secureboot capable hosts and the overall integration into an CS infrastructure.
Beside the information in the docs the only offical source of information is a wiki entry ( https://cwiki.apache.org/confluence/display/CLOUDSTACK/Enable+UEFI+booting+for+Instance ) .
The infos given in the wiki are still up to date as it has been modified at 10/2019.
As far as i have seen, there have been some changes fixes and enhancements regarding this feature during the last releases of CS.
For example the discovery of UEFI-capable hosts ( https://lists.apache.org/thread/dqyxsfggbjppqznj16y9v1rvqhw1mp0b ).
Also the additional needed steps to enable UEFI/secure boot functionality (OVMF-package) arent't documented in official sources.
With Windows Server 2022 we have a major OS which is actively checking secure boot / needing it to match some security baselines.
The same goes for several certifications and stuff when you are using CS in more security sensitive environments - even without Windows based systems at all.
I like to request to update and enhance the documentation with the needed information - especially about
- deployment of UEFI-enabled hosts
- implications for deploying legacy / BIOS-VMs in such environments.
The problem is that currently, at least I as a 'provider' of a CS infrastructure, can't find the information / process-diagrams ... to enhance the documentation with further information.
STEPS TO REPRODUCE
EXPECTED RESULTS
ACTUAL RESULTS