[opencryptoki-users] (no subject)
Brought to you by:
ebarretto
Menu
▾
▴
[opencryptoki-users] (no subject)
|
From: John P. P. <jpe...@ho...> - 2012-02-07 16:18:14
|
I get the following error when I run tpmtoken_init:
[root@tpm2 usr]# tpmtoken_init
Warning: The TPM token has already been initialized. Reinitializing the TPM token will cause all TPM token data to be lost.
Clear the TPM token data? [y/N]: y
Enter the TPM security officer password:
C_Login failed: 0x00000006 (6)
I entered the default SO password 87654321
I tried to change the SO password using pkcsconf but that fails as well:
[root@tpm2 usr]# pkcsconf -P -c 0
Enter the SO PIN:
Enter the new SO PIN:
Re-enter the new SO PIN:
Error logging in: 0x6 (CKR_FUNCTION_FAILED)
I read it another thread that I may need to change to SRK password to null but that gives me yet another error:
[root@tpm2 usr]# tpm_changeownerauth -s
Enter owner password:
Enter new SRK password:
Confirm password:
Tspi_Context_LoadKeyByUUID failed: 0x00002020 - layer=tcs, code=0020 (32), Key not found in persistent storage
pkcsconf -t shows that the PIN need to be changed:
[root@tpm2 usr]# pkcsconf -t
Token #0 Info:
Label: IBM PKCS#11 TPM Token
Manufacturer: IBM Corp.
Model: TPM v1.1 Token
Serial Number: 123
Flags: 0x880445 (RNG|LOGIN_REQUIRED|CLOCK_ON_TOKEN|TOKEN_INITIALIZED|USER_PIN_TO_BE_CHANGED|SO_PIN_TO_BE_CHANGED)
Sessions: 0/-2
R/W Sessions: -1/-2
PIN Length: 6-127
Public Memory: 0xFFFFFFFF/0xFFFFFFFF
Private Memory: 0xFFFFFFFF/0xFFFFFFFF
Hardware Version: 1.0
Firmware Version: 1.0
Time: 10:15:11 AM
Token #1 Info:
Label: IBM OS PKCS#11
Manufacturer: IBM Corp.
Model: IBM SoftTok
Serial Number: 123
Flags: 0x880045 (RNG|LOGIN_REQUIRED|CLOCK_ON_TOKEN|USER_PIN_TO_BE_CHANGED|SO_PIN_TO_BE_CHANGED)
Sessions: 0/-2
R/W Sessions: -1/-2
PIN Length: 4-8
Public Memory: 0xFFFFFFFF/0xFFFFFFFF
Private Memory: 0xFFFFFFFF/0xFFFFFFFF
Hardware Version: 1.0
Firmware Version: 1.0
Time: 10:15:11 AM
|
