If you want to remove the anoing red bar with the lock icon at boot, you can configure your EFI folder including Grub to load OpenCore. Here the steps to follow.
We need a version of Grub precompiled with the certificate used for sign the binary file. For this presuppose we use Super UEFIinSecureBoot Disk. Download the last release.
Extract or mount the .img file downloaded before (you can use unzip software like 7zip) and replace the folder Boot in your EFI folder with the one included in the .img and add the folder grub to your EFI folder.
Remember to also add the file ENROLL_THIS_KEY_IN_MOKMANAGER.cer outside your EFI folder
Now you must rename the OpenCore BOOTx64.efi file present in your EFI/BOOT folder in grubx64_real.efi replacing the version present in the .img file.
At this point you can reboot and enable Secure Boot. You now get a blue screen with the Access Denied error. Is correct. Now follow this instructions (and the illustrated version):
- At the error page press OK
- Press any key to perform MOK management
- Select
Enroll key from disk - Select
Continue - Select the disk where you put the
.cerfile - Select
Yesand thenReboot
After you follow this steps, you are now able to load OpenCore with Secure Boot enabled without any interactions.