tpm_clear(8) [debian man page]
tpm_clear(8) System Manager's Manual tpm_clear(8) TPM Management - tpm_clear NAME
tpm_clear - return the TPM to the default state (unowned, disabled, inactive) SYNOPSIS
tpm_clear [OPTION] DESCRIPTION
tpm_clear requests that the system's TPM perform a clear (via the TPM_OwnerClear API) wiping out all ownership information, in effect invalidaing all keys and data tied to the TPM, as well as disabling and deactivating the TPM. This operation will prompt for the owner password. The --force option relies on Phyiscal Presence to authorize the command (via the TPM_ForceClear API) skipping the owner password prompt. The TPM OwnerClear API can be disabled until the current owner is cleared, requiring use of the --force with tpm_setclearable command. The TPM_ForceClear API can be disabled for the current boot cycle with the tpm_setclearable command. This command requires a reboot to complete the operation. -h, --help Display command usage info. -v, --version Display command version info. -l, --log [none|error|info|debug] Set logging level. -u, --unicode Use TSS UNICODE encoding for passwords to comply with applications using TSS popup boxes -f, --force Rely on Physical Presence for authorization; therefore, do not prompt for owner password. -z, --well-known Authenticate using 20 bytes of zeros as owner password (the default TSS Well Known Secret), instead of prompting for an owner password. SEE ALSO
tpm_version(1), tpm_takeownership(8), tpm_setclearable(8), tpm_setactive(8), tpm_setenable(8), tcsd(8) REPORTING BUGS
Report bugs to <trousers-users@lists.sourceforge.net> TPM Management 2005-05-05 tpm_clear(8)
Check Out this Related Man Page
tpm_setactive(8) System Manager's Manual tpm_setactive(8) TPM Management - tpm_setactive NAME
tpm_setactive - change TPM active states SYNOPSIS
tpm_setactive [OPTION] DESCRIPTION
tpm_setactive reports the status of the TPM's flags regarding the active state of the TPM. This is the default behavior and also accessible via the --status option. Requesting a report of this status prompts for the owner password. The --active option changes the TPM to the active state (via the TPM_PhysicalSetDeactivated API). This operation requires evidence of physical presence, is persistent and requires a reboot to take effect. The --inactive option (via the TPM_PhysicalSetDeactivated API) changes the TPM to the inactive state. This operation requires evidence of physical presence, is persistent and requires a reboot to take effect. An inactive TPM is essentially off but still allows for a tpm_takeownership to occur. The --temp option causes deactivation (via the TPM_SetTempDeactivated API) to happen immediately but only endure for the current boot cycle. The --status, --active, --inactive, and --temp options are mutually exclusive and the last one on the command line will be carried out. -h, --help Display command usage info. -v, --version Display command version info. -l, --log [none|error|info|debug] Set logging level. -u, --unicode Use TSS UNICODE encoding for passwords to comply with applications using TSS popup boxes -s, --status Report the status of flags regarding the TPM active states. -a, --active Make the TPM active. Operation is persistent, requires phyiscal presence to authorize, and a reboot to take effect. -i, --inactive Make the TPM inactive. Operation is persistent, requires phyiscal presence to authorize, and a reboot to take effect. -t, --temp Makes the TPM inactive for the current boot cycle only. -z, --well-known Authenticate using 20 bytes of zeros as owner password (the default TSS Well Known Secret), instead of prompting for an owner password. SEE ALSO
tpm_version(1), tpm_setpresence(8), tpm_takeownership(8), tpm_setenable(8), tcsd(8) REPORTING BUGS
Report bugs to <trousers-users@lists.sourceforge.net> TPM Management 2005-05-06 tpm_setactive(8)