Description

I don't know if it's just me, but on my system I have an update notification in Fedora Software of the Nvidia graphics drivers.

However, I think the Nvidia drivers are already installed because I have access to the Nvidia settings panel.

When I click Activate, I get this pop-up message

Registering the proprietary key (MOK)

Secure Boot is enabled for this device. 
To enable new drivers, a new proprietary machine key (MOK) must be registered. 
You will be asked for a password later in the process. Please note the following password, which is associated with the key:

Then when I click on "Restart and register"
it displays this error pop-up

Here are the details of the package manager errors:
The execution of the child process “pkexec” failed (No file or folder by that name)

This seems to be the command prompt to enter the administrator password, which is not displaying correctly?
Perhaps because pkexec is not installed on SecureBlue (removed for security hardening purposes).

Currently, I only have two enrolled keys.
When I run the mokutil -l command, I get the Fedora and SecureBlue keys, but not the Nvidia key.

Is there really a need to enroll the Nvidia drivers key as well? Because I have the impression that the graphics drivers are already installed and functional.

Is this even really a bug?

Here is the information about the graphics hardware from the GPU-Viewer flatpak application.

Both of my GPUs are recognized : the Nvidia GPU and the GPU integrated into the AMD processor (Granite Ridge [Radeon Graphics] Raphael)

4K MKV videos and 4K YouTube videos play perfectly, and I can see in the resource manager that the Nvidia GPU's video encoding capabilities are being used and that its power consumption has increased, which proves that the GPU is being used to decode the videos.

rpm-ostree status

State: idle
warning: Failed to query journal: couldn't find current boot in journal
AutomaticUpdates: stage; rpm-ostreed-automatic.timer: no runs since boot
Deployments:
● ostree-image-signed:docker://ghcr.io/secureblue/silverblue-nvidia-open-hardened:latest
                   Digest: sha256:0b7fce4b39adaac58560ccb9e00c9bcc9fd13e02956be1cfd99d70c71d8fe1b7
                  Version: 43.20260123.0 (2026-01-23T15:12:54Z)
          LayeredPackages: proton-vpn-gnome-desktop

  ostree-image-signed:docker://ghcr.io/secureblue/silverblue-nvidia-open-hardened:latest
                   Digest: sha256:b7b3b72638ad4a09352deb2a4af9ca73edb44cf7417b8b06af4767a0c7126e86
                  Version: 43.20260123.0 (2026-01-23T07:36:40Z)
          LayeredPackages: proton-vpn-gnome-desktop

Reproduce

Install SecureBlue with NVIDIA GPU open-hardening image

Expected

Successfully enrolling Nvidia driver MOK key (?)

Actual

Error message pkexec

Image

in text

Upstream

nc

Declaration

• I agree to follow this project's Code of Conduct.
• I declare that this is not a request for alternate community messaging or social platforms.
• I declare that I have read the secureblue website and my feature request is in-scope.