Add Secure Boot cert update troubleshooting for Azure Trusted Launch VMs (Windows + Linux)

[ScottAzure]

Summary

Two new troubleshooting articles for Azure Trusted Launch VMs covering Secure Boot certificate updates (June 2026 cert expiry, CVE-2023-24932).

New articles

• Windows: troubleshoot-secure-boot-cert-updates-trusted-launch.md
• Linux: linux-vm-secure-boot-cert-updates-trusted-launch.md

TOC updates

• Added 'Secure Boot certificate updates (Trusted Launch)' section to both Windows and Linux TOCs

Validation

• Tested on 5 Azure Trusted Launch VMs: WS2022 (latest + oldest image), Ubuntu 22.04 (latest + Dec 2023 image), RHEL 9.4
• Event 1795 detection verified via mock test
• Both dpkg (Ubuntu) and rpm (RHEL) RunCommand code paths validated
• Key finding: Azure injects current firmware certs at VM creation regardless of image age

Related

• ICM 765582227 (Secure Boot cert baseline)
• ICM 777380766 (Event 1795 KEK failures)
• KB 5085395 (TVM/CVM guidance)
• KB 5085790 (Known issues)

[prmerger-automator]

@ScottAzure : Thanks for your contribution! The author(s) and reviewer(s) have been notified to review your proposed change. @scotro

[learn-build-service-prod]

Learn Build status updates of commit 9a0002f:

💡 Validation status: suggestions

File	Status	Preview URL	Details
support/azure/virtual-machines/linux/linux-vm-secure-boot-cert-updates-trusted-launch.md	💡Suggestion		Details
support/azure/virtual-machines/windows/troubleshoot-secure-boot-cert-updates-trusted-launch.md	💡Suggestion		Details
support/azure/virtual-machines/linux/toc.yml	✅Succeeded
support/azure/virtual-machines/windows/toc.yml	✅Succeeded

support/azure/virtual-machines/linux/linux-vm-secure-boot-cert-updates-trusted-launch.md

• Line 2, Column 1: [Suggestion: ms-service-suggested] Missing required attribute: 'ms.service'. ms.service is suggested for each article that is published on Learn.

support/azure/virtual-machines/windows/troubleshoot-secure-boot-cert-updates-trusted-launch.md

• Line 2, Column 1: [Suggestion: ms-service-suggested] Missing required attribute: 'ms.service'. ms.service is suggested for each article that is published on Learn.
• Line 110, Column 28: [Suggestion: docs-link-absolute - See documentation] Absolute link 'https://learn.microsoft.com/azure/azure-portal/supportability/how-to-create-azure-support-request' will be broken in isolated environments. Replace with a relative link.

For more details, please refer to the build report.

Note: Your PR may contain errors or warnings or suggestions unrelated to the files you changed. This happens when external dependencies like GitHub alias, Microsoft alias, cross repo links are updated. Please use these instructions to resolve them.

[prmerger-automator]

PRMerger Results

Issue	Description
Added File(s)	This PR contains added files. New files require human review.
Yaml File(s)	This PR includes changes to .yml file(s) owned by another author.
File Change Percent	This PR contains file(s) with more than 30% file change.