From Fedora Project Wiki

Revision as of 14:09, 21 June 2012 by Bryanbickford (talk | contribs)


Trusted Boot is a technique...


yum install tboot

yum install openssl


The following will provide a trusted boot setup with checksums on the initramd and kernel.

Step 1

Take ownership of the TPM

   tpm_takeownership -z

Step 2

Create a verified launch policy. To do this we need the path to the initial ram disk and kernel, as well as the kernel line in grub.conf.

Create a new verified launch policy.

   tb_polgen --create --type nonfatal vl.pol