From Fedora Project Wiki
No edit summary |
No edit summary |
||
| Line 21: | Line 21: | ||
'''Step 2''' | '''Step 2''' | ||
Create a verified launch policy | Create a verified launch policy. To do this we need the path to the initial ram disk and kernel, as well as the kernel line in grub.conf. | ||
Create a new verified launch policy. | |||
tb_polgen --create --type nonfatal vl.pol | |||
Revision as of 14:09, 21 June 2012
Introcuction
Trusted Boot is a technique...
Prerequisites
yum install tboot
yum install openssl
Installation
The following will provide a trusted boot setup with checksums on the initramd and kernel.
Step 1
Take ownership of the TPM
tpm_takeownership -z
Step 2
Create a verified launch policy. To do this we need the path to the initial ram disk and kernel, as well as the kernel line in grub.conf.
Create a new verified launch policy.
tb_polgen --create --type nonfatal vl.pol