Reputation: 171
TPM Provisioning not working with actual TPM device
On the DragonBoard 410c, I can provision the TPM via the Device Portal or with the IoT Core Dashboard, and in both cases, the stored information is not available via the TpmDevice(0) logical device.
TpmDevice(0).GetDeviceID() does return a value, but it is not the configured value, and .GetHostName() and .GetSasToken() both return null.
I can't test on the MinnowBoard Max, because the TPM 2.0 implementation on that board is not complete, and the Raspberry Pi doesn't have a TPM.
I have not tried using the software simulated TPM on the MBM because I want this to actually be secure.
Here's my code, for what it's worth.
TpmDevice myDevice = new TpmDevice(0);
string hubUri = myDevice.GetHostName(); // returns null
string deviceId = myDevice.GetDeviceId(); // returns wrong value
string sasToken = myDevice.GetSASToken(); // returns null
Upvotes: 0
Views: 452
Answers (2)
Reputation: 171
This is an issue with the Insider Preview for the Dragonboard. The current release (15063) does not have this issue.
Marking myself the answer.
Problem apparently made it all the way through the insider builds into production. 16299 shows the same behavior for me as its insider preview versions did.
https://github.com/ms-iot/security/issues/29
Upvotes: 0
Reputation: 9720
You can follow the following tutorial to verify you have the right TPM version enabled and fTPM is functioning:
Upvotes: 0
Related Questions
- Iot central and TPM provisioning
- How to uninstall the TPM simulator and use the real TPM chip on raspberry pi?
- netcmd.exe errors out on fresh image of IoT Core
- Using TPM key handle for device CA key and device Identity Keys
- Using TPM attestation on a Rapberry Pi 3 Device
- Connecting to Azure Iot Hub using TPM
- Deploy IoT Edge module to a Windows device
- Azure IoT Hub with x509 certificate and TPM
- Win 10 IoT TPM on Raspberry pi c#
- Using Tpm on Raspberry pi - error when compiling to native