Issue:
Lenovo M900-series devices demonstrate an issue in that the Windows Boot Logon code will appear first, and after logging in the device cannot find the Operating System. A subsequent reboot will use the SecureDoc Boot Logon and successful authentication will lead to Windows starting. While workable after a fashion, customers find it disconcerting to have to boot twice.
Reason:
On the Lenovo M900-series devices configured using UEFI, the Windows Boot Logon code will appear first in the bootable list, regardless how SecureDoc is installed.
The user will log in, but since the device is Fully Encrypted (and there has been no SecureDoc Pre-Boot during this login cycle) the device fails login, claiming it can't find the Operating System
On the second boot attempt, it uses the SecureDoc Pre-Boot Logon functionality, and this time it is successful and the device will boot to Windows.
Solution:
First do a proper install with the “Use UEFI BootOrder” turned on. Once facing the issue, manually boot pass the boot screen by selecting SD boot, or let it do it by itself and then change the profile with the following changes:
If using Software-Encrypted Drives (SWE):
- Disable the "Use UEFI BootOrder" option
If using Hardware-Encrypted Drives / Self-Encrypting Drives (HWE/SED):
- Disable "Use UEFI BootOrder", and enable "Boot Direct to Windows" options