tpm_takeownership Command
Purpose
Sets up an owner on the Trusted Platform Module (TPM).
Syntax
tpm_takeownership [ -h ] [ -l [ none | error | info | debug ] ] [ -u ] [ -v ] [ -z ]
Description
The tpm_takeownership command sets up an owner on the system TPM (through the TPM_TakeOwnership API). This operation requires that the TPM be enabled and restricted by the tpm_setownable command. The command prompts for owner and security root key passwords and confirmations. This command can take a while to process.
Flags
| Item | Description |
|---|---|
| -h (or --help) | Displays the command usage information. |
| -l (or --log) [ none | error | info | debug ] | Sets the logging level to none, error, info, or debug as specified. |
| -u (or --unicode) | Uses the Trusted Computing Group Software Stack (TSS) UNICODE encoding for the passwords to comply with the applications that are using the TSS popup boxes. |
| -v (or --version) | Displays the command version information. |
| -y (or --owner-well-known) | Sets the owner secret to all zeros (20 bytes of zeros). |
| -z (or --well-known) | Changes the password to a new one when the current owner password is a secret of all zeros (20 bytes of zeros). It must be specified which password (owner, storage root key, or both) needs to be changed. |