How to: Enable and Activate TPM via BIOS or PPI

How to: Enable and Activate TPM via BIOS or PPI

TPM Enable and/or Activate is an operation mostly used on TPM 1.2. Bellow you can see how to do it via BIOS or PPI.
Note that executing the operation via PPI is the recommended method due its concise steps and not requiring console access to the unit for new BIOS. Gracefully used to avoid visits to the server racks, avoid console cables and back-and-forth communication with IT teams on field.

Note: This article mostly applies to TPM 1.2, available only on NSC models produced prior to 2020.

Enable and Activate TPM via PPI (Physical Presence Interface)

  1. Login as root in NG Shell;
  2. Verify TPM clear+enable+activate operation (14) on PPI operations list is 'User not required';
    1. cat /sys/class/tpm/tpm0/ppi/tcg_operations
    2. See option 14 is 'User not required';
  3. Request the operation to TPM PPI;
    1. echo 14 > /sys/class/tpm/tpm0/ppi/request
  4. Reboot the device;
  5. Wait unit reboot and boot up. Now the TPM is cleared, enabled and activated;

Note: This option might not require console access to the unit to execute the operation;
Note: Even on older BIOS, the operation is usually 'User not required', but if it is 'User required' on your unit, it will require confirming operation on the unit console when the unit reboots, what requires console access to the unit.

    Enable and Activate TPM on BIOS

    1. Restart the Nodegrid
    2. Press "shift + D" to enter in Advanced BIOS
    3. Go to Advanced tab
    4. Select Trusted Computing
    5. See the fields from Configuration and Current Status
    6. If TPM Enabled Status is Disabled, change TPM State to Enabled
    7. If Security Device Support is Disabled, change to Enabled
    8. Presses ‘F4' to save your changes and exit

    Here're screenshots to help in the visualization of the process:

    Enable TPM on BIOS


    We hope this guide was helpful in enabling and/or activating the TPM of your Nodegrid device. If you have any questions or encounter any issues during the process, please refer to our knowledge base for more information. If you still need assistance, don't hesitate to contact our support team and we'll be happy to help you.

      • Related Articles

      • Guide: Add Devices to a Company in ZPE Cloud

        Overview There are different methods to associate Nodegrid appliances with a specific ZPE Cloud company: Claim ID, Transfer Key or Customer Code and Enrollment Key. These different methods provide flexibility to fit the different corporate ...
      • How to: Set up ZPE Cloud event notifications

        This document describes the process to set up ZPE Cloud event notifications. Define events you want to receive notifications 1. Login to ZPE Cloud as admin. 2. Go to Settings :: Notification :: Events You can select enable notifications based on ...
      • How to: Add Devices to your ZPE Cloud company using Customer Code and Enrollment key

        ZPE Cloud is a powerful tool for managing your Nodegrid devices, and one of the recommended methods to add devices to your company in ZPE Cloud is to use the Customer Code and Enrollment key. Customer Code is a unique 5-digit identifier assigned to ...
      • How to: Enable ZPE Cloud in a Nodegrid device

        ZPE Cloud is a powerful platform that allows you to manage your Nodegrid devices from anywhere in the world. In order to use the benefits of managing your Nodegrid devices through ZPE Cloud, you need to enroll the Nodegrid device to your company and ...
      • How to: Enable ZPE Cloud Remote Access...Remotely

        You just got your ZPE Nodegrid up and running and it is connected and enrolled in your ZPE Cloud. But you can't access it remotely because the remote access buttons are grayed out. It is online, but no access available. The way to get remote access ...