tpm_getpubek Command
Purpose
Displays the public part of the Trusted Platform Module (TPM) endorsement key.
Syntax
tpm_createek [ -h ] [ -l [ none | error | info | debug ] ] [ -u ] [ -v ] [ -z ]
Description
The tpm_getpubek command requests the TPM's public part of the endorsement key (through the TPM_ReadPubek API). This operation can be restricted to require owner authorization. In that case, the command prompts for the owner password and requests the data (through the TPM_OwnerReadPubek API). The public key information is displayed on a successful call.
Flags
| Item | Description |
|---|---|
| -h (or --help) | Displays the command usage information. |
| -l (or --log) [ none | error | info | debug ] | Sets the logging level to none, error, info, or debug as specified. |
| -u (or --unicode) | Uses the Trusted Computing Group Software Stack (TSS) UNICODE encoding for the passwords to comply with the applications that are using the TSS popup boxes. |
| -v (or --version) | Displays the command version information. |
| -z (or --well-known) | Changes the password to a new one when the current owner password is a secret of all zeros (20 bytes of zeros). It must be specified which password (owner, storage root key, or both) needs to be changed. |