GetKeyProtectorPlatformValidationProfile method of the Win32_EncryptableVolume class

The GetKeyProtectorPlatformValidationProfile method retrieves the platform validation profile for a given key protector of the appropriate type.

The key protector identifier must refer to a key protector of type "TPM", "TPM And PIN", "TPM And PIN And Startup Key", or "TPM And Startup Key".

Syntax

uint32 GetKeyProtectorPlatformValidationProfile(
  [in]  string VolumeKeyProtectorID,
  [out] uint8  PlatformValidationProfile[]
);

Parameters

VolumeKeyProtectorID [in]

Type: string

A unique string identifier used to manage an encrypted volume key protector.

PlatformValidationProfile [out]

Type: uint8[]

An array of integers that specifies how the Trusted Platform Module (TPM) Security Hardware of the computer secures the encryption key of the disk volume.

Value Meaning
0
Core Root of Trust of Measurement (CRTM), BIOS, and Platform Extensions
1
Platform and Motherboard Configuration and Data
2
Option ROM Code
3
Option ROM Configuration and Data
4
Master Boot Record (MBR) Code
5
Master Boot Record (MBR) Partition Table
6
State Transition and Wake Events
7
Computer Manufacturer-Specific
8
NTFS Boot Sector
9
NTFS Boot Block
10
Boot Manager
11
BitLocker Access Control
12
Defined for use by the static operating system
13
Defined for use by the static operating system
14
Defined for use by the static operating system
15
Defined for use by the static operating system
16
Used for debugging
17
Dynamic CRTM
18
Platform defined
19
Used by a trusted operating system
20
Used by a trusted operating system
21
Used by a trusted operating system
22
Used by a trusted operating system
23
Application support

 

Return value

Type: uint32

This method returns one of the following codes or another error code if it fails.

Return code/value Description
S_OK
0 (0x0)
The method was successful.
E_INVALIDARG
2147942487 (0x80070057)
The VolumeKeyProtectorID parameter does not refer to a key protector of the type "TPM", "TPM And PIN", "TPM And PIN And Startup Key", or "TPM And Startup Key".
FVE_E_NOT_ACTIVATED
2150694920 (0x80310008)
BitLocker is not enabled on the volume. Add a key protector to enable BitLocker.

 

Remarks

Managed Object Format (MOF) files contain the definitions for Windows Management Instrumentation (WMI) classes. MOF files are not installed as part of the Windows SDK. They are installed on the server when you add the associated role by using the Server Manager. For more information about MOF files, see Managed Object Format (MOF).

Requirements

Requirement Value
Minimum supported client
Windows Vista Enterprise, Windows Vista Ultimate [desktop apps only]
Minimum supported server
Windows Server 2008 [desktop apps only]
Namespace
Root\CIMV2\Security\MicrosoftVolumeEncryption
MOF
Win32_encryptablevolume.mof

See also

Win32_EncryptableVolume