Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add automatic fallback to TPM emulation on devices that do not have a TPM device #1648

Open
Martin-Weiss opened this issue Nov 25, 2024 · 1 comment
Open

Add automatic fallback to TPM emulation on devices that do not have a TPM device #1648

Martin-Weiss opened this issue Nov 25, 2024 · 1 comment
Labels
kind/enhancement New feature or request

Comments

@Martin-Weiss
Copy link

Describe the solution you'd like:
We want to use a single registration endpoint for all our devices. Some have TPM and some others do not have TPM or even have fTPM.

At the moment we have to enable or disable TPM on the endpoint - so one setting rules them all and we would have to use two different endpoints one for devices with and one for the ones without TPM..

It would be great if elemental-register could automatically fall back to tpm emulation if a device does not have a TPM..

Anything else you would like to add:
Maybe we need an additional parmeter for fallback_to_tpm_emulation=true/false
@kkaempf kkaempf added the kind/enhancement New feature or request label Nov 25, 2024
@kkaempf
Copy link
Contributor

kkaempf commented Nov 25, 2024

TPM is a security measure, esp. ensuring that the right machines connect to the cluster.

A fallback should be explicit, like emulate-tpm: fallback or similar.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/enhancement New feature or request
Projects
Elemental
Status: No status
Milestone
No milestone
Development

No branches or pull requests
2 participants
@kkaempf @Martin-Weiss