Unblock-Tpm
Unblock-Tpm
Resets a TPM lockout.
구문
Parameter Set: Owner Auth
Unblock-Tpm [[-OwnerAuthorization] <String> ] [ <CommonParameters>]
Parameter Set: File
Unblock-Tpm -File <String> [ <CommonParameters>]
자세한 설명
The Unblock-Tpm cmdlet resets a Trusted Platform Module (TPM) lockout. TPM locks itself to prevent tampering or attack. This is called a lockout. To end a TPM lockout, you must provide a valid owner authorization value. You can enter an owner authorization value or specify a file that contains the value. If you do not provide a value, the cmdlet attempts to use a value stored in the registry.
For more information on TPM, see the Trusted Platform Module Technology Overview in the Technet library at https://technet.microsoft.com/en-us/library/jj131725.aspx.
매개 변수
-File<String>
Specifies a file that contains the current owner authorization value for the TPM. You can use the TPM Management Console to create this file.
별칭 |
없음 |
필수 여부 |
true |
위치 |
named |
기본값 |
없음 |
파이프라인 입력 적용 여부 |
false |
와일드카드 문자 허용 여부 |
false |
-OwnerAuthorization<String>
Specifies the current owner authorization value for the TPM.
별칭 |
없음 |
필수 여부 |
false |
위치 |
2 |
기본값 |
없음 |
파이프라인 입력 적용 여부 |
true (ByValue) |
와일드카드 문자 허용 여부 |
false |
<CommonParameters>
이 cmdlet은 일반 매개 변수 -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer 및 -OutVariable을 지원합니다. 자세한 내용은 다음을 참조하세요. about_CommonParameters(https://go.microsoft.com/fwlink/p/?LinkID=113216).
입력
입력 유형은 cmdlet에 파이프할 수 있는 개체의 유형입니다.
출력
출력 유형은 cmdlet이 내보내는 개체의 유형입니다.
TpmObject
A TpmObject object contains the following information:
-- TpmReady. Whether a TPM complies with Windows Server® 2012 standards.
-- TpmPresent. Whether there is a TMP on the current computer.
-- ManagedAuthLevel. The level at which the operating system manages the owner authorization. Possible values are Legacy, Balanced, and Full.
-- OwnerClearDisabled. Whether TPM can be reset. If this value is True, the TPM cannot be reset through the operating system by using the owner authorization value. If this value is False, the TPM can be reset through the operating system.
-- AutoProvisioning. Whether the computer can use auto-provisioning. Possible values are NotDefined, Enabled, Disabled, and DisabledForNextBoot.
-- LockedOut. Whether a TPM is locked out.
-- SelfTest. Information returned by a test that TPM runs.
참고
- Be sure to understand the protection logic TPM uses. The TPM allows at least one attempt to reset the TPM lockout by using the owner authorization value. For more information, see the Reset the TPM Lockout topic in the Technet library at https://technet.microsoft.com/en-us/library/dd851452.aspx.
예제
Example 1: Reset a lockout
This command resets a TPM lockout. The command specifies the owner authorization value vjnuW6rToM41os3xxEpjLdIW2gA=.
PS C:\> Unblock-Tpm -OwnerAuthorization "vjnuW6rToM41os3xxEpjLdIW2gA="