Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

tpm_changeownerauth(8) [centos man page]

tpm_changeownerauth(8)					      System Manager's Manual					    tpm_changeownerauth(8)

						       TPM Management - tpm_changeownerauth

NAME

       tpm_changeownerauth - change the authorization data associated with the owner or SRK

SYNOPSIS

       tpm_changeownerauth [OPTION]

DESCRIPTION

       tpm_changeownerauth allows for changing the authorization data for the TPM owner or the TPM's Storage Root Key (via the TPM_ChangeAuthOwner
       API).  This operation prompts for current password, followed by the new password and a confirmation of the new password. The --owner option
       changes the TPM owner password and --srk option changes the TPM's SRK password. The --well-known option is used when SRK or owner passwords
       need to be changed and current owner password is a secret of zeros, --set-well-known option changes current password to a secret of zeros,
       both options do not work by themselves, they must be used with --owner and --srk options to indicate which of these passwords will be
       changed.

       -h, --help
	      Display command usage info.

       -v, --version
	      Display command version info.

       -l, --log [none|error|info|debug]
	      Set logging level.

       -u, --unicode
	      Use TSS UNICODE encoding for passwords to comply with applications using TSS popup boxes

       -o, --owner
	      Change the authorization data for the TPM owner.

       -s, --srk
	      Change the authorization data for the TPM's Storage Root Key.

       -g, --original_password_unicode
	      Use TSS UNICODE encoding for original password to comply with applications using TSS popup boxes

       -n, --new_password_unicode
	      Use TSS UNICODE encoding for new password to comply with applications using TSS popup boxes

       -z, --well-known
	      Change password to a new one when current owner password is a secret of all zeros (20 bytes of zeros). It must be specified which
	      password (owner, SRK or both) to change

       -r, --set-well-known
	      Change password to a secret of all zeros (20 bytes of zeros). It must be specified which password (owner, SRK or both) to change

       SEE ALSO

       tpm_version(1), tpm_takeownership(8), tcsd(8)

REPORTING BUGS

       Report bugs to <trousers-users@lists.sourceforge.net>

TPM Management							    2005-05-06						    tpm_changeownerauth(8)

Check Out this Related Man Page

tpm_setenable(8)					      System Manager's Manual						  tpm_setenable(8)

							  TPM Management - tpm_setenable

NAME

       tpm_setenable - change TPM enable states

SYNOPSIS

       tpm_setenable [OPTION]

DESCRIPTION

       tpm_setenable reports the status of the TPM's flags regarding the enable state of the TPM.  This is the default behavior and also
       accessible via the --status option. Requesting a report of this status prompts for the owner password.  The --enable option changes the
       system's TPM to the enabled state (via the TPM_OwnerSetDisable API).  This operation prompts for the owner password and is persistent. The
       --disable option (via the TPM_OwnerSetDisable API) changes the system's TPM to the disabled state.  This operation prompts for the owner
       password and is persistent.  A disabled TPM is essentially off and does not allow a tpm_takeownership to occur.	The --force option
       overrides the owner password prompt and relies on physical presence for the operation authorization (via the TPM_PhysicalEnable and
       TPM_PhysicalDisable APIs).  The --enable, --disable, and --status options are mutually exclusive and the last one on the command line will
       be carried out.

       -h, --help
	      Display command usage info.

       -v, --version
	      Display command version info.

       -l, --log [none|error|info|debug]
	      Set logging level.

       -u, --unicode
	      Use TSS UNICODE encoding for passwords to comply with applications using TSS popup boxes

       -s, --status
	      Report the status of flags regarding the TPM enable states.

       -e, --enable
	      Make the TPM enabled.  Operation is persistent and  prompts for owner authorization.

       -d, --disable
	      Make the TPM disabled.   Operation is persistent and prompts for owner authorization.

       -f, --force
	      Overrides the prompt for owner authorization and uses physical presence to authorize the action.

       -z, --well-known
	      Authenticate using 20 bytes of zeros as owner password (the default TSS Well Known Secret), instead of prompting for an owner
	      password.

SEE ALSO

       tpm_version(1), tpm_setpresence(8), tpm_takeownership(8), tpm_setactive(8), tcsd(8)

REPORTING BUGS

       Report bugs to <trousers-users@lists.sourceforge.net>

TPM Management							    2005-05-06							  tpm_setenable(8)
Man Page