I am preforming an Automated install of ESXi 6.5 on a server which has EFI Secure Boot enable. The /efi/boot/boot.cfg and using the extra flags on mkisofs/genisoimage created the customer esxi ISO.
The ISO boots and uses the KS file is located on a NFS share, but after the installation completed none of the customer configuration has been applied.
Checking the kickstart.log file it shows
INFO UEFI Secure Boot Enabled, skipping execution of /var/lib/vmware/firstboot/001.firstboot_001
The file is present in /var/lib/vmware/firstboot/ and contains a copy of the %firstboot section of the KS.
I have not found any KB or blogs that show this issue.
Is there something extra that needs to be added to the Kickstart file to allow the firstboot script to run when using secure boot?