I’m using a Jupistar B250 - which you might not be able to find in the internet (including myself). It uses AMI BIOS and from what I know is that for some reason does not have Secure Boot present (CSM off, UEFI and everythings I can do and still there is no entries).
I do acknowledge someone in the past also have the same issue with me: [Request] How to Enable Secure Boot? but it’s seems old by now.
Does anyone have an idea how to have Secure Boot on ? idk about how Secure Boot works but I do see there are some project that Fake Secure Boot status which I also tried and no luck, still Unsupported in sysinfo.
Here’s my bios dump: Google Drive - I have to use GDrive as the forum does not allow new member to upload files. Thanks a lot
Edit by Fernando: Thread moved into the “BIOS Problems” Category and title shortened/customized
Can you take a photo of the motherboard? I can only see one listing for the Jupistar B250 on VNmese Lazada site but I’m unsure whether it’s the correct board. If possible we can find a similar board with Secure Boot-included BIOS and try crossflashing it.
here is the image you requested
I think you got that right, this mobo are from china and also distributed in Vietnam which is where i’m living rn
Also worth to note that I’m currently using i3-8100, which is 8th gen, which afaik this mobo’s chipset should not support 8th gen cpu. Maybe it’s preloaded with coffee lake’s microcode??
Do you have a hardware programmer (e.g. CH341A) for recovery in case of a bad flash? You will also need it to make a full dump of your current BIOS (your afuwin backup doesn’t contain the ME Region).
Regarding the second part of your reply about the unofficial CPU support, well yes: the Chinese manufacturers have implemented the necessary hacks to support 6-9 gen CPUs.
I don’t currently have an hardware programmer, but I’m happy to get one, it’s not too expensive overall and I might use it in the future.
on the full dump bios, how can I do that using AFUWINGUI, or I have to do it on AFUWINx64.exe. Doing some google suggest using FPT but I’d prefer not to use that tho
biosreg.zip (3.9 MB)
Anyway here’s the dump made from FPT Version: 11.8.86.3909 with params: -bios -d biosreg.bin
I’m not sure if that’s right but tell me if you need anything else
afaik, afuwin can’t backup your ME region, and since you’re gonna get ur CH341A anyway, you’d better use that IMHO. Btw, I checked your BIOS region in AMIBCP and Secure Boot is simply unavailable. Apparently, we can’t unlock what we don’t have so our best bet is to flash BIOS from another board. This is why we need a complete 8MB dump to recover in case the flash went wrong.
I do see that, but the file dumped from FPT as I’ve done above has the same size which idk if that does include ME region or not.
Can you do fptw64 -d backup.bin? Does it output an 8MB file?
Yes, here is the result
backup.zip (5.3 MB)
Nice, we have a full backup now. Just go get the cheapest set of CH341A from Shopee and you’re good to go :v Btw, one question, do you happen to use/or depend on the fTPM (Intel PTT) in any way? Like using Windows 11 and playing Valorant or League? Just asking because most recent BIOSes I found disable the ME to enable support for Xeons, which means if you want TPM you would need to get an external module.
Unfortunately I do, in facts I wanted to enable Secure Boot are due to many games nowadays requires SB to be enabled. I have a MSI H310m PRO VDH-Plus but it’s malfunctioned, which is why I have that board.
Anyway if I’m not using xeon cpus then external tpm should not be needed right? They’re much expensive compared to CH341A.
The TPM2.0 module is cheap (~100k VND only) but the real hassle is likely the plugging it in part :v But I think there shall be some BIOSes with ME enabled so we can use fTPM. Finger crossed.
Looking at my board’s image seems that it didn’t have connectors for it tho. And just asking, can you checkout my bios dump and realistically what cpu I can run with it
You can run literally any 6-9 gen CPUs. Just no Xeon and no BGA-to-LGA mutants.
This might sound dump, but does SecureBoot works as a driver module ? I do see that my dump has some strings mentioned about Secure Boot like CSM, SB Violations,…
anyway the flash module may takes 3 days as I’m have ordered just now and it’s delivering from China
I’m not knowledgeable enough about BIOS so I’m afraid I can’t give you a conclusive answer. However, as I mentioned before, the Secure Boot menu (the option that displays in the BIOS menu screen) is absent from the BIOS, so we can’t enable it in any way.
Ok just wait until then to be completely on the safe side. Actually, I check your backup BIOS and we have full read/write access to all the regions, so technically speaking we can flash new BIOS using intel FPT.
I found a potential candidate for you: BIOS from Huananzhi H311-VHC Plus. ME is enabled (so you can use fTPM) and Secure Boot menu is present.
H311VHCPV10.zip (4.9 MB)
Thanks mate, will try after the programmer arrives.
And btw how could you determine what bios “should” be compatable with mine?
Just from my past experience with Chinese motherboards (particularly X79 and X99). Their BIOSes tend to be near to identical and crossflashing has worked for me multiple times in the past. I must admit that there’s no theoretical framework that you can base on to surely determine compatibility, just hands-on experiments. For your case in particular, I did compare the BIOS from Huananzhi and your stock dump in CoffeeTime (same ME & microcode), also both boards use 22nm chipset (H110/B250/H310C), so I have a good feeling about this attempt.
Btw if you want to be extra careful, make a dump with CH341A too and compare it with the dump from FPT (using HxD for example). We should get 2 identical dumps.
UPDATE: It worked. At first I try to turn it on without plugging in my graphics card, thought i’m using i3-8100 which has iGPU and there is no video output. However I do see a sign that it booted to Windows (by seeing my mouse has specific preset that will set when it’s booted from Windows. Reinstalling my graphics card now it booted normally. Thanks a lot @Tris
hmm but the iGPU doesn’t work? That’s a bit weird. Anyway, glad that I could help. Stress your machine for a few days to see if there’s any stability issue. Btw, I see that you’re using W10, so TPM2 shouldn’t be a problem haha.