Transmitting the password from SS server to SS clients thru IMV is a good
alternative, as this way the password is stored on the server only with proper
access and obfuscation.
-Vikas
On 8/12/16, 11:46 AM, "Andreas Steffen" wrote:
Hi Vikas,
Hi Vikas,
there is currently no provision to use a non-default password.
Putting the TPM owner password into strongswan.conf wouldn't make
any sense so some kind of password-prompting mechanism would have
to be built into the IMC. Or if the IMV would transmit the password
via an IF-M attribute to
Hi StrongSwan Team,
I have a question regarding Attestation using IMC/IMV. On properly configuring
attestation plugin in StrongSwan client, I do see that TPM quotes being send to
the StrongSwan server.
This all works fine if you are using default TPM owner and SRK auth at the
client