From Fedora Project Wiki

No edit summary
No edit summary
Line 21: Line 21:
'''Step 2'''
'''Step 2'''


Create a verified launch policy. To do this we need the path to the initial ram disk and kernel, as well as the kernel line in grub.conf.
In order to create a VLP we need the path to the initial ram disk and kernel, as well as the kernel line in grub.conf.


Create a new verified launch policy.
Create a new verified launch policy.


     tb_polgen --create --type nonfatal vl.pol
     tb_polgen --create --type nonfatal vl.pol

Revision as of 14:10, 21 June 2012

Introcuction

Trusted Boot is a technique...

Prerequisites

yum install tboot

yum install openssl

Installation

The following will provide a trusted boot setup with checksums on the initramd and kernel.

Step 1

Take ownership of the TPM 

   tpm_takeownership -z

Step 2

In order to create a VLP we need the path to the initial ram disk and kernel, as well as the kernel line in grub.conf.

Create a new verified launch policy. 

   tb_polgen --create --type nonfatal vl.pol
Retrieved from "https://fedoraproject.org/w/index.php?title=Tboot&oldid=293262"