1tpm_setpresence(8)          System Manager's Manual         tpm_setpresence(8)
2
3
4
5                       TPM Management - tpm_setpresence
6

NAME

8       tpm_setpresence- change TPM physical presence states or settings
9

SYNOPSIS

11       tpm_setpresence [OPTION]
12
13

DESCRIPTION

15       tpm_setpresence reports the status of the TPM's flags regarding
16       physical presence.  This is the default behavior and also accessible
17       via the --status option. Requesting a report of this status prompts for
18       the owner password.  The --assert option changes the TPM to the
19       physically present state.  The --clear option changes the TPM to the
20       not present state.  The --lock option locks the TPM to the current
21       physical presence state for the current boot cycle.  The --enable-cmd
22       option allows the TPM to accept local commands to toggle physical
23       presence states. The --disable-cmd option prevents the TPM from
24       accepting local commands to toggle physical presence states.  The
25       --enable-hw option allows the TPM to accept hardware signals to toggle
26       physical presence states. The --disable-hw option prevents the TPM from
27       accepting hardware signals to toggle physical presence states.  The
28       --set-lifetime-lock option locks the Command and Hardware enablement
29       flags in their current state permenantly.  This option can never be
30       undone.  The system will attempt to use the owner password to display
31       the current states before preceding unless the --yes option is given to
32       answer yes to all questions.  All changes are made with the
33       TSC_Physical Presence API.
34
35
36       -h, --help
37              Display command usage info.
38
39       -v, --version
40              Display command version info.
41
42       -l, --log [none|error|info|debug]
43              Set logging level.
44
45       -u, --unicode
46              Use TSS UNICODE encoding for passwords to comply with
47              applications using TSS popup boxes
48
49       -a, --assert
50              Assert that an admin is physically present at the machine.
51
52       -c, --clear
53              Remove the assertion that an admin is physically present at the
54              machine.
55
56       --lock Lock the assertions of physical presence in there current states
57              until a reboot.
58
59       --enable-cmd
60              Allow use of commands to signal an admin is physically present.
61
62       --disable-cmd
63              Disallow use of commands to signal an admin is physically
64              present.
65
66       --enable-hw
67              Allow use of hardware signals to signal an admin is physically
68              present.
69
70       --disable-hw
71              Disallow use of hardware signals to signal an admin is
72              physically present.
73
74       --set-lifetime-lock
75              Allow no further changes to the flags controling how physical
76              presence can be signaled.  This is PERMANENT.
77
78       -y, --yes
79              Answer yes to all questions.  Only applicable with
80              --set-lifetime-lock.
81
82       -z, --well-known
83              Authenticate using 20 bytes of zeros as owner password (the
84              default TSS Well Known Secret), instead of prompting for an
85              owner password.
86
87

SEE ALSO

89       tpm_version(1), tpm_setenable(8), tpm_setactive(8), tpm_setownable(8),
90       tcsd(8)
91
92

REPORTING BUGS

94       Report bugs to <trousers-users@lists.sourceforge.net>
95
96
97
98TPM Management                    2005-05-06                tpm_setpresence(8)
Impressum