Man page - tpm_mkaik(8)

Packages contains this manual

Package:  tpm-quote-tools
apt-get install tpm-quote-tools

Manuals in package:
• tpm_getpcrhash(8)
• tpm_mkaik(8)
• tpm_getquote(8)
• tpm_loadkey(8)
• tpm_unloadkey(8)
• tpm_updatepcrhash(8)
• tpm_mkuuid(8)
• tpm_quote_tools(8)
• tpm_verifyquote(8)
Documentations in package:
• tpm-quote-tools

Manual

MAKE TPM AIK

NAME
SYNOPSIS
DESCRIPTION
BUGS
SEE ALSO

---

NAME

tpm_mkaik - make a TPM Attestation Identity Key

SYNOPSIS

tpm_mkaik [ -zuhv ] BLOB-FILE PUBKEY-FILE

DESCRIPTION

The program generates a TPM Attestation Identity Key and stores it in the file BLOB-FILE. The public key is stored in the file PUBKEY-FILE. The public key is DER encoded.

	-z		Use the well known secret used as the owner secret.
	-u		Use TSS UNICODE encoding for passwords.
	-h		Display command usage info.
	-v		Display command version info.

BUGS

Sometimes, when tpm_mkaik is invoked without the -z option, no password prompt appears. As a work around, use tpm_changeownerauth to set the secret to the well known one, generate the key, and then use tpm_changeownerauth to set the secret to its original value.

SEE ALSO

tpm_quote_tools (8), tpm_changeownerauth (8)

---