SetPhysicalPresenceRequest method of the Win32_Tpm class

The SetPhysicalPresenceRequest method of the Win32_Tpm class requests a TPM operation that requires physical presence. After you have used this method to submit a request, apply the next step indicated in the GetPhysicalPresenceTransition method. Finally, use the GetPhysicalPresenceResponse method to check whether the operation ran successfully. This method suspends BitLocker if calling could cause BitLocker recovery to be required. BitLocker would automatically resume once TPM has been provisioned.

These steps are necessary because physical presence operations can run only after the computer has detected the physically present user.

Syntax

uint32 SetPhysicalPresenceRequest(
  [in] uint32 Request
);

Parameters

Request [in]

Type: uint32

An integer value that specifies the requested TPM operation that requires physical presence.

Value Meaning
0
No request.
Use this value to clear a pending request.
1
Enable the TPM.
This operation is reversed by operation 2.
For more information, see the following related methods that do not involve physical presence: Enable and IsEnabled.
2
Disable the TPM.
This operation is reversed by operation 1.
For more information, see the following related method that does not involve physical presence: Disable.
3
Activate the TPM.
This operation is reversed by operation 4.
4
Deactivate the TPM.
This operation is reversed by operation 3.
5
Clear the TPM.
This operation cannot be reversed.
For more information, see the following related method that does not involve physical presence: Clear.
6
Enable and activate the TPM.
This operation is reversed by operation 7.
7
Deactivate and disable the TPM.
This operation is reversed by operation 6.
8
Allow the installation of a TPM owner.
This operation is reversed by operation 9.
9
Prevent the installation of a TPM owner.
This operation is reversed by operation 8.
10
Enable, activate, and allow the installation of a TPM owner.
This operation is reversed by operation 11.
11
Deactivate, disable, and prevent the installation of a TPM owner.
This operation is reversed by operation 10.
12
Deferred Physical PresenceunownedFieldUpgrade
Physical presence setting has been updated.
Windows 7, Windows Server 2008 R2, Windows Vista and Windows Server 2008: This value is not supported.
14
Clear, enable, and activate the TPM.
This operation cannot be reversed.
15
SetNoPPIProvision_False
Sets the provision that you must be physically presence to set the TPM.
This operation is reversed by operation 16.
Windows 7, Windows Server 2008 R2, Windows Vista and Windows Server 2008: This value is not supported.
16
SetNoPPIProvision_True
Sets the provision that you don't need to be physically presence to set the TPM.
This operation is reversed by operation 15.
Windows 7, Windows Server 2008 R2, Windows Vista and Windows Server 2008: This value is not supported.
17
SetNoPPIClear_False
Sets the provision that you must be physically presence to clear the TPM.
This operation is reversed by operation 18.
Windows 7, Windows Server 2008 R2, Windows Vista and Windows Server 2008: This value is not supported.
18
SetNoPPIClear_True
Sets the provision that you don't need to be physically presence to clear the TPM.
This operation is reversed by operation 17.
Windows 7, Windows Server 2008 R2, Windows Vista and Windows Server 2008: This value is not supported.
19
SetNoPPIMaintenance_False
Sets the provision that you must be physically presence to maintain the TPM.
This operation is reversed by operation 20.
Windows 7, Windows Server 2008 R2, Windows Vista and Windows Server 2008: This value is not supported.
20
SetNoPPIMaintenance_True
Sets the provision that you don't need to be physically presence to maintain the TPM.
This operation is reversed by operation 19.
Windows 7, Windows Server 2008 R2, Windows Vista and Windows Server 2008: This value is not supported.
21
Enable + Activate + Clear
Enable, activate, and clear the TPM.
Windows 7, Windows Server 2008 R2, Windows Vista and Windows Server 2008: This value is not supported.
22
Enable + Activate + Clear + Enable + Activate
Enable, activate, and clear the TPM, and then enable and reactivate the TPM.
Windows 7, Windows Server 2008 R2, Windows Vista and Windows Server 2008: This value is not supported.

 

Return value

Type: uint32

All TPM errors as well as errors specific to TPM Base Services can be returned.

Return code/value Description
S_OK
0 (0x0)
The method was successful.
Use the GetPhysicalPresenceTransition method to determine the next step that is needed.
TPM_E_PPI_NOT_SUPPORTED
2150171395 (0x80290303)
The computer does not support TPM physical presence operations by using this method.
Consult your computer manufacturer for more information. Your computer's BIOS may have alternate support for configuring the TPM.
TPM_E_PPI_ACPI_FAILURE
2150171392 (0x80290300)
A hardware failure occurred.
Consult your computer manufacturer for more information.

 

Remarks

TPM physical presence operations do not require TPM owner authorization. However, they do require additional steps to help protect against unauthorized changes to the TPM.

Computers that support TPM physical presence operations will attempt to detect the physically present user before running the operation. While computers may differ in how this detection is performed, the idea is to have a physically present user or administrator authorize the operation.

For example, the computer may require the user to restart the computer. After the computer is restarted, the computer can display a BIOS confirmation dialog box that allows the user to confirm the operation by using the keyboard.

Managed Object Format (MOF) files contain the definitions for Windows Management Instrumentation (WMI) classes. MOF files are not installed as part of the Windows SDK. They are installed on the server when you add the associated role by using the Server Manager. For more information about MOF files, see Managed Object Format (MOF).

Requirements

Requirement Value
Minimum supported client
Windows Vista [desktop apps only]
Minimum supported server
Windows Server 2008 [desktop apps only]
Namespace
Root\CIMV2\Security\MicrosoftTpm
MOF
Win32_tpm.mof
DLL
Win32_tpm.dll

See also

Win32_Tpm

Enable

IsEnabled

Disable

Clear