tss2_setcertificate(1) -
Contents
Bugs
Github Issues (https://github.com/tpm2-software/tpm2-tools/issues)
Common Options
This collection of options are common to all tss2 programs and provide information that many users may
expect.
• -h, --help[man|no-man]: Display the tools manpage. By default, it attempts to invoke the manpager for
the tool, however, on failure will output a short tool summary. This is the same behavior if the “man”
option argument is specified, however if explicit “man” is requested, the tool will provide errors from
man on stderr. If the “no-man” option if specified, or the manpager fails, the short options will be
output to stdout.
To successfully use the manpages feature requires the manpages to be installed or on MANPATH, See
man(1) for more details.
• -v, --version: Display version information for this tool, supported tctis and exit.
Description
tss2_setcertificate(1) - This command associates an x509 certificate in PEM encoding into the path of a
key.
Example
tss2_setcertificate --path=HS/SRK/myRSACrypt --x509certData=x509certData.file
Help
See the Mailing List (https://lists.linuxfoundation.org/mailman/listinfo/tpm2)
tpm2-tools APRIL 2019 tss2_setcertificate(1)
Name
tss2_setcertificate(1) -
Options
These are the available options:
• -p, --path=STRING:
Identifies the entity to be associated with the certificate.
• -i, --x509certData=FILENAME or - (for stdin):
The PEM encoded certificate. Optional parameter. If omitted, then the stored x509 certificate is re‐
moved.
Returns
0 on success or 1 on failure.
See Also
fapi-config(5) to adjust Fapi parameters like the used cryptographic profile and TCTI or directories for the Fapi metadata storages. fapi-profile(5) to determine the cryptographic algorithms and parameters for all keys and operations of a specific TPM interaction like the name hash algorithm, the asymmetric signature algorithm, scheme and pa‐ rameters and PCR bank selection.
Synopsis
tss2_setcertificate [OPTIONS]
