1tpm_clear(8) System Manager's Manual tpm_clear(8)
2 TPM Management - tpm_clear
6
8 tpm_clear - return the TPM to the default state (unowned, disabled,
9 inactive)
10
12 tpm_clear [OPTION]
13
16 tpm_clear requests that the system's TPM perform a clear (via the
17 TPM_OwnerClear API) wiping out all ownership information, in effect
18 invalidaing all keys and data tied to the TPM, as well as disabling and
19 deactivating the TPM. This operation will prompt for the owner
20 password. The --force option relies on Phyiscal Presence to authorize
21 the command (via the TPM_ForceClear API) skipping the owner password
22 prompt. The TPM OwnerClear API can be disabled until the current owner
23 is cleared, requiring use of the --force with tpm_setclearable command.
24 The TPM_ForceClear API can be disabled for the current boot cycle with
25 the tpm_setclearable command. This command requires a reboot to
26 complete the operation.
27 -h, --help
30 Display command usage info.
31 -v, --version
33 Display command version info.
34 -l, --log [none|error|info|debug]
36 Set logging level.
37 -u, --unicode
39 Use TSS UNICODE encoding for passwords to comply with
40 applications using TSS popup boxes
41 -f, --force
43 Rely on Physical Presence for authorization; therefore, do not
44 prompt for owner password.
45 -z, --well-known
47 Authenticate using 20 bytes of zeros as owner password (the
48 default TSS Well Known Secret), instead of prompting for an
49 owner password.
50
53 tpm_version(1), tpm_takeownership(8), tpm_setclearable(8),
54 tpm_setactive(8), tpm_setenable(8), tcsd(8)
55
58 Report bugs to <trousers-users@lists.sourceforge.net>
59TPM Management 2005-05-05 tpm_clear(8)