Clear-Tpm
Clear-Tpm
Resets a TPM to its default state.
Sintaxis
Parameter Set: Owner Auth
Clear-Tpm [[-OwnerAuthorization] <String> ] [ <CommonParameters>]
Parameter Set: File
Clear-Tpm -File <String> [ <CommonParameters>]
Descripción detallada
The Clear-Tpm cmdlet resets the Trusted Platform Module (TPM) to its default state. A reset removes the owner authorization value and any keys stored in the TPM. To reset a TPM, you must provide a valid owner authorization value. You can enter an owner authorization value or specify a file that contains the value. If you do not provide a value, the cmdlet attempts to use a value stored in the registry.
For more information on TPM, see the Trusted Platform Module Technology Overview in the Technet library at https://technet.microsoft.com/en-us/library/jj131725.aspx.
Parámetros
-File<String>
Specifies a file that contains the current owner authorization value for the TPM. You can use the TPM Management Console to create this file.
Alias |
ninguno |
¿Requerido? |
true |
¿Posición? |
named |
Valor predeterminado |
ninguno |
¿Aceptar canalización? |
false |
¿Aceptar caracteres comodín? |
false |
-OwnerAuthorization<String>
Specifies the current owner authorization value for the TPM.
Alias |
ninguno |
¿Requerido? |
false |
¿Posición? |
2 |
Valor predeterminado |
ninguno |
¿Aceptar canalización? |
true (ByValue) |
¿Aceptar caracteres comodín? |
false |
<CommonParameters>
Este cmdlet admite los siguientes parámetros comunes: -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer y -OutVariable. Para obtener más información, consulte about_CommonParameters (https://go.microsoft.com/fwlink/p/?LinkID=113216).
Entradas
El tipo de entrada es el tipo de los objetos que se pueden canalizar al cmdlet.
String
The owner authorization value for the TPM.
Salidas
El tipo de resultado es el tipo de objetos que emite el cmdlet.
TpmObject
A TpmObject object contains the following information:
-- TpmReady. Whether a TPM complies with Windows Server® 2012 standards.
-- TpmPresent. Whether there is a TMP on the current computer.
-- ManagedAuthLevel. The level at which the operating system manages the owner authorization. Possible values are Legacy, Balanced, and Full.
-- OwnerClearDisabled. Whether TPM can be reset. If this value is True, the TPM cannot be reset through the operating system by using the owner authorization value. If this value is False, the TPM can be reset through the operating system.
-- AutoProvisioning. Whether the computer can use auto-provisioning. Possible values are NotDefined, Enabled, Disabled, and DisabledForNextBoot.
-- LockedOut. Whether a TPM is locked out.
-- SelfTest. Information returned by a test that TPM runs.
Ejemplos
Example 1: Reset TPM
This command resets the TPM. The command uses the owner authorization value stored in the registry instead of specifying a value or using a value in a file.
PS C:\> Clear-Tpm
Example 2: Reset TPM with a supplied authorization value
This command resets the TPM by using the specified owner authorization value.
PS C:\> Clear-Tpm -OwnerAuthorization "vjnuW6rToM41os3xxEpjLdIW2gA="
Example 3: Reset TMP using authorization value from file
This command resets the TPM by using the owner authorization value included in the specified file.
PS C:\> Clear-Tpm -File "MyOwnerAuthFile.tpm"