ChangeOwnerAuth method of the Win32_Tpm class
The ChangeOwnerAuth method of the Win32_Tpm class changes the TPM owner authorization value.
Syntax
uint32 ChangeOwnerAuth(
[in, optional] string OldOwnerAuth,
[in, optional] string NewOwnerAuth
);
Parameters
-
OldOwnerAuth [in, optional]
-
Type: string
A string that names the current TPM owner authorization value of the device. Use the ConvertToOwnerAuth method to translate a password to this authorization value. The OldOwnerAuth parameter is not supplied or an empty string is provided, this method gets the value from the registry if present.
-
NewOwnerAuth [in, optional]
-
Type: string
A string that names the new TPM owner authorization value. Use the ConvertToOwnerAuth method to translate a password to this authorization value. The NewOwnerAuth parameter cannot be empty or NULL.
Return value
Type: uint32
All TPM errors as well as errors specific to TPM Base Services can be returned.
The following table lists some of the common return codes.
| Return code/value | Description |
|---|---|
|
The method was successful. |
|
The current TPM owner authorization value is incorrect. |
|
The TPM is defending against dictionary attacks and is in a time-out period. For more information, see the ResetAuthLockOut method. |
|
Cannot save recovery information to the network. The computer has been configured to store recovery information to Active Directory Domain Services. For instructions on how to set up Active Directory, see BitLocker Drive Encryption Configuration Guide: Backing Up BitLocker and TPM Recovery Information to Active Directory. |
|
Cannot save recovery information to the network. The computer has been configured to store recovery information to Active Directory Domain Services. A network connection is required to continue. |
Remarks
The ChangeOwnerAuth method backs up the new TPM owner authorization to Active Directory Domain Services if the appropriate Group Policy settings have been configured.
Managed Object Format (MOF) files contain the definitions for Windows Management Instrumentation (WMI) classes. MOF files are not installed as part of the Windows SDK. They are installed on the server when you add the associated role by using the Server Manager. For more information about MOF files, see Managed Object Format (MOF).
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client |
Windows Vista [desktop apps only] |
| Minimum supported server |
Windows Server 2008 [desktop apps only] |
| Namespace |
Root\CIMV2\Security\MicrosoftTpm |
| MOF |
|
| DLL |
|
See also