[bravetraveler]

I have to constantly adjust my comfort level regarding what 'production' means. Consider the prep conditions, or 'prod', for your typical Chef or Butcher!

Anyway, fair question IMO. Another point I'd like to make... migrating away from this filesystem, disabling secure boot, or leaning into key enrollment would be fine. Dealer's choice.

The 'forced interaction' for enrollment absolutely presents a hurdle. That said: this wouldn't be the first time I've used 'expect' to use the management interface at scale. 200 is a good warm up.

The easy way is to... opt out of secure boot. Get an exception if your compliance program demands it [and tell them about this module, too]. Don't forget your 'Business Continuity/Disaster Recovery' of... everything. Documents, scheduled procedures, tooling, whatever.

Again, though, stability is a fair question/point. Filesystems and storage are cursed. That would be my concern before 'how do I scale', which comparatively, is a dream.

[doublerabbit]

> The easy way is to... opt out of secure boot. Get an exception if your compliance program demands it.

Not going to happen. Secure Boot is a mandatory requirement in this scenario.

I can't talk further because NDA, but sure am confused by the downvotes for asking a question.

[bravetraveler]

Fair 'nuff; say no more -- I get it. Neat they don't mind a 'plugged' kernel, otherwise :) I find the situation interesting to say the least!

I'll hit this post positively in an attempt to counter the down-trend. edit: well, that was for squat.