You technically don’t have to disable these for Linux to work. It’s just that a lot of Linux drivers don’t get signed fast enough so you’d have to wait longer to get them with secure boot.
Why he disabled TPM, I don’t know. It works just fine on my device, although I don’t use it.
Dual graphics cards worked fine already 10 years ago for me. What issue are people having?