Create bootable USB drive with ThinkPad Drive Erase Utility on Linux
- 04 Dec 2017: Post was created (diff)
I am creating a bootable USB pen drive containing Drive Erase Utility for the Resetting the Cryptographic Key and the Erasing the Solid State Drive - ThinkPad for my Lenovo T470P.
This is one of multiple steps taken to prepare for full disk encryption.
Download the .zip file containing the utility. This file is a little under 80KB.
Prepare USB disk
Run fdisk to format and prepare the USB disk. Make sure the device path to the USB disk is correct. /dev/sdb is the correct one for me, but may not be the same device on your computer.
sudo fdisk /dev/sdbto start the utility. Next steps are keypresses.- o to create a new DOS disklabel
- n for new partition
- Enter for default (primary partition)
- Enter for default partition number
- Enter for default first sector
- Enter for default last sector
- Conditional: If prompted, enter Y to overwrite existing file system signature
- t to change partition type
- c for W95 FAT32 (LBA)
- a to toggle (enable) bootable flag
- w to write changes to disk and exit fdisk
Create a filesystem on the drive. Now, append a 1 to the original device path to select the first and single partition created in the previous step.
# mkfs.vfat -F 32 /dev/sdb1
Mount the partition
# mount /dev/sdb1 /mnt
Unzip the contents of the utility zip previously downloaded
# cd /mnt
# unzip ~/Downloads/83fd04ww.zip
Create UEFI folder and move the BootX64.efi into that folder
# mkdir -p /mnt/EFI/BOOT
# mv /mnt/BootX64.efi /mnt/EFI/BOOT
Sync pending disk operations, change out of the directory, and unmount the flash drive
# sync
# cd /
# unmount /mnt
Run the utility
Insert the USB drive into the ThinkPad and hammer F12 (alternatively F1, then F12) after powering on to be able to select “Boot from other device”. Select the USB Flash Drive, and the utility should start.
Disk utility steps
- 1 for delete
- Yes to confirm
- Yes to REALLY confirm
- Write down the Request Key written on screen
- Press ENTER to Restart and let the boot process do its thing without interfering
- Enter the request key previously written down and ENTER to continue
- Enter to confirm destroying of all data
- Wait for operation to complete and press any key to restart
If you have any comments or feedback, please send me an e-mail. (stig at stigok dotcom).
Did you find any typos, incorrect information, or have something to add? Then please propose a change to this post.