{"id":16136,"date":"2026-04-28T08:01:33","date_gmt":"2026-04-27T23:01:33","guid":{"rendered":"https:\/\/m365jp.net\/?p=16136"},"modified":"2026-04-28T08:01:43","modified_gmt":"2026-04-27T23:01:43","slug":"mc1293483-microsoft-secure-score-new-recommendation-for-secure-boot-2023-certificate-readiness-in-microsoft-defender-for-endpoint","status":"publish","type":"post","link":"https:\/\/m365jp.net\/index.php\/2026-04-28-mc1293483-microsoft-secure-score-new-recommendation-for-secure-boot-2023-certificate-readiness-in-microsoft-defender-for-endpoint","title":{"rendered":"MC1293483 | Microsoft Secure Score: New recommendation for Secure Boot 2023 certificate readiness in Microsoft Defender for Endpoint"},"content":{"rendered":"<div class=\"postie-post\">\n<div>\n<hr>\n<table id=\"section\">\n<tbody>\n<tr>\n<th width=\"95%\">MC1293483 | Microsoft Secure Score: New recommendation for Secure Boot 2023 certificate readiness in Microsoft Defender for Endpoint<\/th>\n<\/tr>\n<\/tbody>\n<\/table>\n<hr>\n<table id=\"data\">\n<tbody>\n<tr>\n<th>Classification<\/th>\n<td>stayInformed<\/td>\n<\/tr>\n<tr>\n<th>Last Updated<\/th>\n<td>04\/27\/2026 22:16:15<\/td>\n<\/tr>\n<tr>\n<th>Start Time<\/th>\n<td>04\/27\/2026 22:16:09<\/td>\n<\/tr>\n<tr>\n<th>End Time<\/th>\n<td>06\/30\/2026 07:00:00<\/td>\n<\/tr>\n<tr>\n<th>Message Content<\/th>\n<td>\n<p><b>[Introduction]<\/b><\/p>\n<p>  We\u2019re introducing a new <b>Microsoft Secure Score recommendation in Microsoft Defender for Endpoint (MDE)<\/b> to help organizations assess and prepare for the transition to Secure Boot 2023 certificates. Secure Boot 2023 certificates replace older certificates   (such as Windows UEFI CA 2011) that are scheduled to expire in June 2026, helping ensure devices continue to boot securely and receive future protections. This recommendation improves visibility into device readiness and helps organizations maintain a trusted   and secure boot process.<\/p>\n<p><b>[When this will happen:]<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>Public Preview (Worldwide):&nbsp;We will begin rolling out in&nbsp;<b>late April 2026 <\/b>  and&nbsp;expect to complete by <b>early May 2026.<\/b><\/li>\n<p>  <\/p>\n<li>General Availability (Worldwide):&nbsp;We will begin rolling out in <b>early May 2026&nbsp;<\/b>and expect to complete by<b> late May 2026.<\/b><\/li>\n<p>  <\/ul>\n<p><b>[How this affects your organization:]<\/b><\/p>\n<p><b>Who is affected:<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>Admins managing Microsoft Defender for Endpoint and Microsoft Secure Score<\/li>\n<p>  <\/ul>\n<p><b>What will happen:<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>A new Secure Score recommendation will appear:<\/li>\n<p>  <\/p>\n<ul>  <\/p>\n<li><b>Ensure devices are updated to Secure Boot 2023 certificates and boot manager.<\/b><\/li>\n<p>  <\/ul>\n<p>  <\/p>\n<li>Provides visibility into device readiness for Secure Boot updates.<\/li>\n<p>  <\/p>\n<li>Identifies devices that have not deployed:<\/li>\n<p>  <\/p>\n<ul>  <\/p>\n<li>Windows UEFI CA 2023 certificates<\/li>\n<p>  <\/p>\n<li>2023-signed boot manager<\/li>\n<p>  <\/ul>\n<p>  <\/p>\n<li>Secure Score will reflect progress toward implementing this recommendation.<\/li>\n<p>  <\/p>\n<li>Feature is <b>on by default<\/b> and requires no configuration to appear.<\/li>\n<li>This recommendation helps track readiness for replacing expiring Secure Boot certificates (for example, Windows UEFI CA 2011).<\/li>\n<\/ul>\n<p><b>Why this matters:<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>Windows Secure Boot certificates are scheduled to expire in June 2026<\/li>\n<p>  <\/p>\n<li>Devices not updated may not receive future protections for the early boot process<\/li>\n<p>  <\/p>\n<li>This recommendation helps maintain a trusted and secure boot chain<\/li>\n<p>  <\/ul>\n<p><b>[What you can do to prepare:]<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>Review the new recommendation in Microsoft Secure Score once available.<\/li>\n<p>  <\/p>\n<li>Identify devices requiring Secure Boot certificate updates.<\/li>\n<p>  <\/p>\n<li>Follow deployment guidance to update Secure Boot certificates and boot manager:  <a href=\"https:\/\/aka.ms\/GetSecureBoot\" target=\"_blank\">Windows Secure Boot certificate expiration and CA updates | Microsoft Support<\/a>.  <\/li>\n<p>  <\/p>\n<li>Coordinate with infrastructure and platform teams responsible for device and firmware updates.<\/li>\n<p>  <\/p>\n<li>Learn more about Secure Boot updates in MDE:&nbsp;<a href=\"https:\/\/aka.ms\/secureboot-mde\">Assess Secure Boot status with Microsoft Defender<\/a>.<\/li>\n<p>  <\/ul>\n<p><b>[Compliance considerations:]<\/b><\/p>\n<p>  No compliance considerations identified, review as appropriate for your organization.<\/p>\n<\/td>\n<\/tr>\n<tr>\n<th>Machine Translation<\/th>\n<td>\n<p><b>[\u306f\u3058\u3081\u306b]<\/b><\/p>\n<p>Microsoft <b>Defender for Endpoint(MDE)\u306b\u304a\u3044\u3066<\/b> \u3001\u7d44\u7e54\u304cSecure Boot 2023\u8a3c\u660e\u66f8\u3078\u306e\u79fb\u884c\u3092\u8a55\u4fa1\u3057\u6e96\u5099\u3059\u308b\u306e\u3092\u652f\u63f4\u3059\u308b\u65b0\u3057\u3044Microsoft Secure Score\u63a8\u5968\u3092\u5c0e\u5165\u3057\u307e\u3059\u3002Secure Boot 2023\u8a3c\u660e\u66f8\u306f\u30012026\u5e746\u6708\u306b\u671f\u9650\u5207\u308c\u4e88\u5b9a\u306e\u53e4\u3044\u8a3c\u660e\u66f8(\u4f8b\u3048\u3070Windows UEFI CA 2011)\u306b\u4ee3\u308f\u308a\u3001\u30c7\u30d0\u30a4\u30b9\u304c\u5b89\u5168\u306b\u8d77\u52d5\u3057\u3001\u5c06\u6765\u306e\u4fdd\u8b77\u3092\u53d7\u3051\u3089\u308c\u308b\u3088\u3046\u306b\u3057\u307e\u3059\u3002\u3053\u306e\u63a8\u5968\u306b\u3088\u308a\u3001\u30c7\u30d0\u30a4\u30b9\u306e\u6e96\u5099\u72b6\u6cc1\u306e\u53ef\u8996\u5316\u304c\u5411\u4e0a\u3057\u3001\u7d44\u7e54\u304c\u4fe1\u983c\u3067\u304d\u5b89\u5168\u306a\u8d77\u52d5\u30d7\u30ed\u30bb\u30b9\u3092\u7dad\u6301\u3059\u308b\u306e\u306b\u5f79\u7acb\u3061\u307e\u3059\u3002<\/p>\n<p><b>[\u3044\u3064\u8d77\u3053\u308b\u304b:]<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>\u30d1\u30d6\u30ea\u30c3\u30af\u30d7\u30ec\u30d3\u30e5\u30fc(\u4e16\u754c\u516c\u958b):&nbsp;<b>2026\u5e744\u6708\u4e0b\u65ec <\/b>\u306b&nbsp;\u5c55\u958b\u3092\u958b\u59cb\u3057\u3001&nbsp;5\u6708\u521d\u65ec\u307e\u3067\u306b\u5b8c\u4e86\u3059\u308b\u4e88\u5b9a <b>\u3067\u3059\u3002<\/b><\/li>\n<p>  <\/p>\n<li>\u4e00\u822c\u516c\u958b(\u4e16\u754c):&nbsp;<b>2026&nbsp;\u5e745\u6708\u521d<\/b>\u65ec\u306b\u5c55\u958b\u3092\u958b\u59cb\u3057\u3001<b>2026\u5e745\u6708\u4e0b\u65ec<\/b>\u307e\u3067\u306b\u5b8c\u4e86\u3059\u308b\u4e88\u5b9a\u3067\u3059\u3002<\/li>\n<p>  <\/ul>\n<p><b>[\u3053\u308c\u304c\u3042\u306a\u305f\u306e\u7d44\u7e54\u306b\u3069\u306e\u3088\u3046\u306a\u5f71\u97ff\u3092\u4e0e\u3048\u308b\u304b:]<\/b><\/p>\n<p><b>\u5f71\u97ff\u3092\u53d7\u3051\u308b\u4eba\u7269:<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>Microsoft Defender for Endpoint\u304a\u3088\u3073Microsoft Secure Score\u3092\u7ba1\u7406\u3059\u308b\u7ba1\u7406\u8005<\/li>\n<p>  <\/ul>\n<p><b>\u4eca\u5f8c\u306e\u5c55\u958b:<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>\u65b0\u3057\u3044Secure Score\u306e\u63a8\u5968\u304c\u73fe\u308c\u307e\u3059:<\/li>\n<p>  <\/p>\n<ul>  <\/p>\n<li><b>\u30c7\u30d0\u30a4\u30b9\u304cSecure Boot 2023\u306e\u8a3c\u660e\u66f8\u3068\u30d6\u30fc\u30c8\u30de\u30cd\u30fc\u30b8\u30e3\u30fc\u306b\u66f4\u65b0\u3055\u308c\u3066\u3044\u308b\u3053\u3068\u3092\u78ba\u8a8d\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/b><\/li>\n<p>  <\/ul>\n<p>  <\/p>\n<li>Secure Boot\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u306b\u5bfe\u3059\u308b\u30c7\u30d0\u30a4\u30b9\u306e\u6e96\u5099\u72b6\u6cc1\u3092\u53ef\u8996\u5316\u3057\u307e\u3059\u3002<\/li>\n<p>  <\/p>\n<li>\u307e\u3060\u5c55\u958b\u3055\u308c\u3066\u3044\u306a\u3044\u30c7\u30d0\u30a4\u30b9\u3092\u8b58\u5225\u3059\u308b:<\/li>\n<p>  <\/p>\n<ul>  <\/p>\n<li>Windows UEFI CA 2023 \u8a3c\u660e\u66f8<\/li>\n<p>  <\/p>\n<li>2023\u5e74\u5951\u7d04 \u30d6\u30fc\u30c8\u30de\u30cd\u30fc\u30b8\u30e3\u30fc<\/li>\n<p>  <\/ul>\n<p>  <\/p>\n<li>Secure Score\u306f\u3001\u3053\u306e\u52e7\u544a\u306e\u5b9f\u65bd\u306b\u5411\u3051\u305f\u9032\u6357\u3092\u53cd\u6620\u3057\u307e\u3059\u3002<\/li>\n<p>  <\/p>\n<li>\u3053\u306e\u6a5f\u80fd\u306f <b>\u30c7\u30d5\u30a9\u30eb\u30c8\u3067\u30aa\u30f3<\/b> \u3067\u3001\u8868\u793a\u3055\u308c\u308b\u306e\u306b\u8a2d\u5b9a\u306f\u5fc5\u8981\u3042\u308a\u307e\u305b\u3093\u3002<\/li>\n<li>\u3053\u306e\u63a8\u5968\u306f\u3001\u671f\u9650\u5207\u308c\u306e\u30bb\u30ad\u30e5\u30a2\u30d6\u30fc\u30c8\u8a3c\u660e\u66f8(\u4f8b:Windows UEFI CA 2011)\u306e\u4ea4\u63db\u6e96\u5099\u72b6\u6cc1\u3092\u8ffd\u8de1\u3059\u308b\u306e\u306b\u5f79\u7acb\u3061\u307e\u3059\u3002<\/li>\n<\/ul>\n<p><b>\u306a\u305c\u3053\u308c\u304c\u91cd\u8981\u306a\u306e\u304b:<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>Windows\u30bb\u30ad\u30e5\u30a2\u30d6\u30fc\u30c8\u8a3c\u660e\u66f8\u306f2026\u5e746\u6708\u306b\u671f\u9650\u5207\u308c\u304c\u4e88\u5b9a\u3055\u308c\u3066\u3044\u307e\u3059<\/li>\n<p>  <\/p>\n<li>\u66f4\u65b0\u3055\u308c\u3066\u3044\u306a\u3044\u30c7\u30d0\u30a4\u30b9\u306f\u3001\u65e9\u671f\u8d77\u52d5\u30d7\u30ed\u30bb\u30b9\u306b\u5bfe\u3057\u3066\u4eca\u5f8c\u306e\u4fdd\u8b77\u3092\u53d7\u3051\u3089\u308c\u306a\u3044\u5834\u5408\u304c\u3042\u308a\u307e\u3059<\/li>\n<p>  <\/p>\n<li>\u3053\u306e\u63a8\u5968\u306b\u3088\u308a\u3001\u4fe1\u983c\u6027\u304c\u9ad8\u304f\u5b89\u5168\u306a\u30d6\u30fc\u30c8\u30c1\u30a7\u30fc\u30f3\u3092\u7dad\u6301\u3059\u308b\u306e\u306b\u5f79\u7acb\u3061\u307e\u3059<\/li>\n<p>  <\/ul>\n<p><b>[\u6e96\u5099\u306e\u305f\u3081\u306b\u3067\u304d\u308b\u3053\u3068:]<\/b><\/p>\n<p>  <\/p>\n<ul>  <\/p>\n<li>Microsoft Secure Score\u3067\u65b0\u3057\u3044\u63a8\u5968\u4e8b\u9805\u304c\u5229\u7528\u53ef\u80fd\u306b\u306a\u3063\u305f\u3089\u3001\u5fc5\u305a\u78ba\u8a8d\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/li>\n<p>  <\/p>\n<li>Secure Boot\u8a3c\u660e\u66f8\u306e\u66f4\u65b0\u304c\u5fc5\u8981\u306a\u30c7\u30d0\u30a4\u30b9\u3092\u7279\u5b9a\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/li>\n<p>  <\/p>\n<li>Secure Boot\u8a3c\u660e\u66f8\u304a\u3088\u3073\u30d6\u30fc\u30c8\u30de\u30cd\u30fc\u30b8\u30e3\u30fc\u306e\u66f4\u65b0\u306b\u95a2\u3059\u308b\u30c7\u30d7\u30ed\u30a4\u30f3\u30b0\u30ac\u30a4\u30c0\u30f3\u30b9\u306b\u5f93\u3063\u3066\u304f\u3060\u3055\u3044: <a href=\"https:\/\/aka.ms\/GetSecureBoot\" target=\"_blank\">  Windows Secure Boot\u8a3c\u660e\u66f8\u306e\u671f\u9650\u5207\u308c\u3068CA\u66f4\u65b0 |Microsoft\u30b5\u30dd\u30fc\u30c8<\/a>\u3002  <\/li>\n<p>  <\/p>\n<li>\u30c7\u30d0\u30a4\u30b9\u3084\u30d5\u30a1\u30fc\u30e0\u30a6\u30a7\u30a2\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3092\u62c5\u5f53\u3059\u308b\u30a4\u30f3\u30d5\u30e9\u304a\u3088\u3073\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u30c1\u30fc\u30e0\u3068\u9023\u643a\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/li>\n<p>  <\/p>\n<li>MDE\u3067\u306eSecure Boot\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u306b\u3064\u3044\u3066\u8a73\u3057\u304f\u306f\u3053\u3061\u3089:&nbsp;<a href=\"https:\/\/aka.ms\/secureboot-mde\">Microsoft Defender\u3067\u306eSecure Boot\u306e\u72b6\u614b\u8a55\u4fa1<\/a>\u3002<\/li>\n<p>  <\/ul>\n<p><b>[\u30b3\u30f3\u30d7\u30e9\u30a4\u30a2\u30f3\u30b9\u4e0a\u306e\u8003\u616e\u4e8b\u9805:]<\/b><br \/>  \u30b3\u30f3\u30d7\u30e9\u30a4\u30a2\u30f3\u30b9\u4e0a\u306e\u61f8\u5ff5\u4e8b\u9805\u306f\u7279\u5b9a\u3055\u308c\u305a\u3001\u7d44\u7e54\u306b\u5fdc\u3058\u3066\u30ec\u30d3\u30e5\u30fc\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>MC1293483 | Microsoft Secure Score: New recommendation for Secure Boot 2023 certificate readiness in Microsoft [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-16136","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/16136","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/comments?post=16136"}],"version-history":[{"count":0,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/16136\/revisions"}],"wp:attachment":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/media?parent=16136"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/categories?post=16136"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/tags?post=16136"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}