Uploaded image for project: 'OpenShift Virtualization'
  1. OpenShift Virtualization
  2. CNV-62285

DOC: vTPM without persistence passes Windows BitLocker system checks

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Unresolved
    • Icon: Normal Normal
    • CNV v4.20.0
    • CNV v4.14.1
    • CNV Documentation
    • None
    • Quality / Stability / Reliability
    • 2
    • False
    • Hide

      None

      Show
      None
    • False
    • Instructions
    • Moderate
    • No

      Description of problem:

      This is a clone of CNV-36448 for the documentation team.

      CNV-36448 has been included in the release notes as a known issue for many releases. It is time to add the known behavior to the documentation and stop including the known issue in the release notes.

      When adding a virtual Trusted Platform Module (vTPM) device to a Windows VM, the BitLocker Drive Encryption system check passes even if the vTPM device is not persistent. This is because a vTPM device that is not persistent stores and recovers encryption keys using ephemeral storage for the lifetime of the virt-launcher pod. When the VM migrates or is shut down and restarts, the vTPM data is lost. (CNV-36448)

      Version-Release number of selected component (if applicable):

       

      How reproducible:

       

      Steps to Reproduce:

      1.
2.
3.

      Actual results:

       

      Expected results:

       

      Additional info:

       

              ctomasko Catherine Tomasko
              ctomasko Catherine Tomasko
              Kedar Bidarkar Kedar Bidarkar
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: