Import-TpmOwnerAuth

Imports a TPM owner authorization value to the registry.

Syntax

Import-TpmOwnerAuth
      -File <String>
      [<CommonParameters>]
Import-TpmOwnerAuth
      [-OwnerAuthorization] <String>
      [<CommonParameters>]

Description

The Import-TpmOwnerAuth cmdlet imports a valid Trusted Platform Module (TPM) owner authorization value to the registry.

For more information on TPM, see the Trusted Platform Module Technology Overview in the Technet library.

Examples

Example 1: Import an owner authorization value

PS C:\> Import-TpmOwnerAuth -OwnerAuthorization "Qn2sdCFQmvjf+tBtSWH4GT87sQs="
TpmReady           : False
TpmPresent         : True
ManagedAuthLevel   : Full
OwnerAuth          : Qn2sdCFQmvjf+tBtSWH4GT87sQs=
OwnerClearDisabled : True
AutoProvisioning   : DisabledForNextBoot
LockedOut          : False
SelfTest           : {191, 191, 245, 191...}

This command imports the specified owner authorization value to the registry.

Example 2: Import an owner authorization value from a file

PS C:\> Import-TpmOwnerAuth -File "OwnAuthFile.tpm"
TpmReady           : False
TpmPresent         : True
ManagedAuthLevel   : Full
OwnerAuth          : OwnerClearDisabled : True
AutoProvisioning   : DisabledForNextBoot
LockedOut          : False
SelfTest           : {191, 191, 245, 191...}

This command imports the owner authorization value in the specified file to the registry.

Parameters

-File

Specifies a file that contains the current owner authorization value for the TPM. You can use the TPM Management Console to create this file.

Type:String
Position:Named
Default value:None
Required:True
Accept pipeline input:False
Accept wildcard characters:False

-OwnerAuthorization

Specifies the current owner authorization value for the TPM.

Type:String
Aliases:o
Position:1
Default value:None
Required:True
Accept pipeline input:True
Accept wildcard characters:False

Inputs

String

Specifies the owner authorization value for the TPM.

Outputs

TpmObject

This cmdlet returns a TpmObject object that contains the following information:

  • TpmReady. Whether a TPM complies with Windows ServerĀ® 2012 standards.
  • TpmPresent. Whether there is a TMP on the current computer.
  • ManagedAuthLevel. The level at which the operating system manages the owner authorization. Possible values are Legacy, Balanced, and Full.
  • OwnerClearDisabled. Whether TPM can be reset. If this value is True, the TPM cannot be reset through the operating system by using the owner authorization value. If this value is False, the TPM can be reset through the operating system.
  • AutoProvisioning. Whether the computer can use auto-provisioning. Possible values are NotDefined, Enabled, Disabled, and DisabledForNextBoot.
  • LockedOut. Whether a TPM is locked out.
  • SelfTest. Information returned by a test that TPM runs.