tss2_createkey - Man Page

Synopsis

tss2_createkey [Options]

See Also

fapi-config(5) to adjust Fapi parameters like the used cryptographic profile and TCTI or directories for the Fapi metadata storages.

fapi-profile(5) to determine the cryptographic algorithms and parameters for all keys and operations of a specific TPM interaction like the name hash algorithm, the asymmetric signature algorithm, scheme and parameters and PCR bank selection.

Description

tss2_createkey(1) - This commands creates a key inside the TPM and stores it in the FAPI metadata store and if requested persistently inside the TPM. Depending on the specified key type, cryptographic algorithms and parameters for the created key are determined by the corresponding cryptographic profile (cf., fapi-profile(5)).

Options

These are the available options:

Common Options

This collection of options are common to all tss2 programs and provide information that many users may expect.

Example

Create a key without password

tss2_createkey --path=HS/SRK/myRsaCryptKey --type="noDa, decrypt" --authValue=""

Create a key, ask for password on the command line

tss2_createkey --path=HS/SRK/myRsaCryptKey --type="noDa, decrypt"

Create a key with password abc .

tss2_createkey --path=HS/SRK/myRsaCryptKey --type="noDa, decrypt" --authValue=abc

Returns

0 on success or 1 on failure.

Bugs

Github Issues (https://github.com/tpm2-software/tpm2-tools/issues)

Help

See the Mailing List (https://lists.01.org/mailman/listinfo/tpm2)

Info

APRIL 2019 tpm2-tools General Commands Manual