On 06/14/2016 02:55 AM, Jan Schermer wrote: > Hi, > I'm trying to buy AOM-TPM-9655V-S TPM module for my SuperMicro servers. > The *-S variant is provisioned for Intel TXT for server chipsets/procs, > there's also *-C variant for i3/i5/i7 and Xeon E3 for workstations/clients. > > My distributor doesn't seem to have them in stock and no ETA. But they have > lots of "AOM-TPM-9655V" (AKA unprovisioned). > If I understand what that means is it lacks the indexes needed for Intel TXT > but also the nvLocked bit is set to 0 - which means all ACLs are off, which > is mildly disturing if people are using them in production... > > There's something called "Intel Provisioning Utility" which executes in EFI > and "provisons" the TPM as *-S or *-C variant but I was not able to get it > yet, and sadly my distributor has never heard of it (doh). > > Does anybody know whether this is something I can do using only tpm-tools? > Can I create all the needed indexes and set the nvLocked bit and get it > working properly? (= with TXT working) > Or do I absolutely need this Intel utility because I does something magical > I'm not aware of?
Based on a document from 2010 it looks OEMs can get a TPM provisioning tool for TXT from Intel: https://downloadmirror.intel.com/18931/eng/Intel%20TXT%20LAB%20Handout.pdf (section 3.1 on page 12) It specifically mentions locking the NVRAM, and looks like there's another tool for defining the NV indices. I do know that tpm-tools allows for defining NVRAM indices and sizes, but I do not know which indices/sizes TXT uses. David > > Thanks > > Jan > ------------------------------------------------------------------------------ > What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic > patterns at an interface-level. Reveals which users, apps, and protocols are > consuming the most bandwidth. Provides multi-vendor support for NetFlow, > J-Flow, sFlow and other flows. Make informed decisions using capacity > planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e > _______________________________________________ > TrouSerS-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/trousers-users > -- Thanks, David Van Arnem Development Engineer Computer Measurement Laboratory ------------------------------------------------------------------------------ What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic patterns at an interface-level. Reveals which users, apps, and protocols are consuming the most bandwidth. Provides multi-vendor support for NetFlow, J-Flow, sFlow and other flows. Make informed decisions using capacity planning reports. http://pubads.g.doubleclick.net/gampad/clk?id=1444514421&iu=/41014381 _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
