From Fedora Project Wiki

No edit summary
No edit summary
Line 26: Line 26:


     tb_polgen --create --type nonfatal vl.pol
     tb_polgen --create --type nonfatal vl.pol
== Notes ==
We may need to modprobe tpm --force=1

Revision as of 14:11, 21 June 2012

Introcuction

Trusted Boot is a technique...

Prerequisites

yum install tboot

yum install openssl

Installation

The following will provide a trusted boot setup with checksums on the initramd and kernel.

Step 1

Take ownership of the TPM 

   tpm_takeownership -z

Step 2

In order to create a VLP we need the path to the initial ram disk and kernel, as well as the kernel line in grub.conf.

Create a new verified launch policy. 

   tb_polgen --create --type nonfatal vl.pol


Notes

We may need to modprobe tpm --force=1

Retrieved from "https://fedoraproject.org/w/index.php?title=Tboot&oldid=293263"