This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
→ 🚀Are you a Lansweeper Champion?! Join our Contributor Program Sign up here!
Community FAQ
Register | Log In
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Lansweeper Community
- Forums
- Reports & Analytics
- Expanded Encrypted Volume Report (UEFI Boot / Secu...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Register to ask a question, start a topic or share an idea
Join the Community
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-12-2019 03:20 PM
I've created report that shows Boot Mode (UEFI / BIOS) if SecureBoot is Enabled/Disabled and if System Drive is Bitlocker Encrypted or Not.
In order for this report to work it requires a custom registry scan configured as follows:
Rootkey: HKEY_LOCAL_MACHINE
RegPath: SYSTEM\CurrentControlSet\Control\SecureBoot\State
RegValue: UEFISecureBootEnabled
In order for this report to work it requires a custom registry scan configured as follows:
Rootkey: HKEY_LOCAL_MACHINE
RegPath: SYSTEM\CurrentControlSet\Control\SecureBoot\State
RegValue: UEFISecureBootEnabled
Select Top 1000000 tsysAssetTypes.AssetTypeIcon16 As icon,
tblAssets.AssetID,
tblAssets.AssetName,
tblEncryptableVolume.DriveLetter,
Case
When tblEncryptableVolume.ProtectionStatus = 0 Then 'OFF'
When tblEncryptableVolume.ProtectionStatus = 1 Then 'ON'
Else 'UNKNOWN'
End As BitLocker,
Case
When tblRegistry.Value = 0 Then 'DISABLED'
When tblRegistry.Value = 1 Then 'ENABLED'
Else 'UNKNOWN'
End As SecureBoot,
Case
When tblRegistry.Value Is Null Then 'BIOS'
Else 'UEFI'
End As [Boot Mode],
tblEncryptableVolume.LastChanged,
tblAssets.Domain,
tblAssets.Username,
tblAssets.IPAddress,
tblAssets.Description,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tblAssetCustom.Location,
tsysIPLocations.IPLocation,
tsysOS.OSname As OS,
tblAssets.SP As SP,
tblAssets.Firstseen,
tblAssets.Lastseen
From tblEncryptableVolume
Inner Join tblAssets On tblEncryptableVolume.AssetId = tblAssets.AssetID
Inner Join tsysAssetTypes On tblAssets.Assettype = tsysAssetTypes.AssetType
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysOS On tsysOS.OScode = tblAssets.OScode
Left Join tsysIPLocations On tblAssets.LocationID = tsysIPLocations.LocationID
Inner Join tblRegistry On tblAssets.AssetID = tblRegistry.AssetID
Where
tblRegistry.Regkey Like
'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecureBoot\State' And
tblRegistry.Valuename = 'UEFISecureBootEnabled'
Order By tblAssets.AssetName
Labels:
- Labels:
-
Finished Reports
-
Report Center
1 REPLY 1
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-16-2019 02:25 PM
Added Partition Type of System Drive
Select Top 1000000 tsysAssetTypes.AssetTypeIcon16 As icon,
tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.IPAddress,
tblEncryptableVolume.DriveLetter,
Case
When tblDiskPartition.Type = 'Installable File System' Then 'MBR'
When tblDiskPartition.Type = 'GPT: System' Then 'GPT'
Else 'UNKNOWN'
End As [System Partition],
Case
When tblEncryptableVolume.ProtectionStatus = 0 Then 'OFF'
When tblEncryptableVolume.ProtectionStatus = 1 Then 'ON'
Else 'UNKNOWN'
End As BitLocker,
Case
When tblRegistry.Value = 0 Then 'DISABLED'
When tblRegistry.Value = 1 Then 'ENABLED'
Else 'UNKNOWN'
End As SecureBoot,
Case
When tblRegistry.Value Is Null Then 'BIOS'
Else 'UEFI'
End As [Boot Mode],
tblEncryptableVolume.LastChanged,
tblAssets.Domain,
tblAssets.Username,
tblAssets.Description,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tsysIPLocations.IPLocation,
tsysOS.OSname As OS,
tblAssets.SP As SP,
tblAssets.Firstseen,
tblAssets.Lastseen
From tblEncryptableVolume
Inner Join tblAssets On tblEncryptableVolume.AssetId = tblAssets.AssetID
Inner Join tsysAssetTypes On tblAssets.Assettype = tsysAssetTypes.AssetType
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysOS On tsysOS.OScode = tblAssets.OScode
Left Join tsysIPLocations On tblAssets.LocationID = tsysIPLocations.LocationID
Inner Join tblRegistry On tblAssets.AssetID = tblRegistry.AssetID
Inner Join tblDiskPartition On tblAssets.AssetID = tblDiskPartition.AssetID
Where (tblDiskPartition.Type = 'GPT: System' Or tblDiskPartition.Type =
'Installable File System') And
tblRegistry.Regkey Like
'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecureBoot\State' And
tblRegistry.Valuename = 'UEFISecureBootEnabled'
Order By tblAssets.AssetName
Reports & Analytics
Ask about reports you're interested in and share reports you've created. Subscribe to receive daily updates of reports shared in the Community.
New to Lansweeper?
Try Lansweeper For Free
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now