Man page - tpm_restrictsrk(8)
Packages contains this manual
- tpm_createek(8)
- tpm_nvinfo(8)
- tpm_changeownerauth(8)
- tpm_unsealdata(1)
- tpm_setactive(8)
- tpm_setownable(8)
- tpm_nvwrite(8)
- tpm_setpresence(8)
- tpm_setenable(8)
- tpm_restrictsrk(8)
- tpm_takeownership(8)
- tpm_revokeek(8)
- tpm_version(1)
- tpm_sealdata(1)
- tpm_nvdefine(8)
- tpm_getpubek(8)
- tpm_setclearable(8)
- tpm_selftest(8)
- tpm_clear(8)
- tpm_setoperatorauth(8)
- tpm_nvread(8)
- tpm_nvrelease(8)
- tpm_resetdalock(8)
- tpm_restrictpubek(8)
apt-get install tpm-tools
Manual
tpm_restrictsrk
NAMESYNOPSIS
DESCRIPTION
SEE ALSO
REPORTING BUGS
TPM Management - tpm_restrictsrk
NAME
tpm_restrictsrk - restrict the ability to access the Storage Root Key
SYNOPSIS
tpm_restrictsrk [ OPTION ]
DESCRIPTION
tpm_restrictsrk
reports the status of who can access the Storage Root Key.
This is the default behavior and also available with the
--status
option. This operation will be in effect
until the owner is cleared and prompts for the owner
passord. With the
--restrict
option, the ability to
access the Storage Root Key is resticted to the owner. The
command prompts for the owner password to complete the
operation. The
--allow
and
--restrict
options
are mutually exclusive and the last one on the command line
will be carried out.
-h
,
--help
Display command usage info.
-v , --version
Display command version info.
-l , --log [none|error|info|debug]
Set logging level.
-u , --unicode
Use TSS UNICODE encoding for passwords to comply with applications using TSS popup boxes
-a , --allow
Allow SRK read access using SRK auth
-s , --status
Display the status of who can access the Storage Root Key
-r , --restrict
Restrict SRK read to owner only
-z , --well-known
Authenticate using 20 bytes of zeros as owner password (the default TSS Well Known Secret), instead of prompting for an owner password.
SEE ALSO
tpm_version (1), tpm_takeownership (8), tcsd (8)
REPORTING BUGS
Report bugs to <trousers-users@lists.sourceforge.net>