tpm_setclearable - disable TPM clear operations
tpm_setclearable reports the status of the TPM’s flags regarding how
the TPM can be cleared. This is the default behavior and also
accessible via the --status option. Requesting a report of this status
prompts for the owner password. The --owner option requests that the
TPM disable clear operations (via the TPM_DisableOwnerClear API)
disabling the owner from clearing out the ownership information. This
operation prompts for the owner password. This operation is in effect
until the current owner is cleared. The --force option (via the
TPM_DisableForceClear API) disables using Phyiscal Presence to
authorize a clear operation. This operation does not require
authorization and will skip the owner password prompt. This operation
is only in effect until a reboot.
Display command usage info.
Display command version info.
-l, --log [none|error|info|debug]
Set logging level.
Use TSS UNICODE encoding for passwords to comply with
applications using TSS popup boxes
Report the status of flags regarding how the TPM can be cleared.
Disable use of owner authorization for authorizating a clear
operation until a new owner exists.
Disable use of Physical Presence for authorizating a clear
operation until a reboot has occurred.
Authenticate using 20 bytes of zeros as owner password (the
default TSS Well Known Secret), instead of prompting for an
tpm_version(1), tpm_takeownership(8), tpm_clear(8), tcsd(8)
Report bugs to <firstname.lastname@example.org>