Linux - HardwareThis forum is for Hardware issues.
Having trouble installing a piece of hardware? Want to know if that peripheral is compatible with Linux?
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
After doing a clean installation to Ubuntu 22.04 lts, upon boot up each time, I get around a dozen error messages flash across the screen,
The repeated error messages are similar to "ima: error communicating to tpm chip"
Just curious what this is (?)
Addendum: I believe I found the solution (at https://askubuntu.com/questions/1178...es-during-boot), to simply turn on the tpm chip in bios..
I pressed F10 repeatedly and got into the BIOS. Anyone that can point me to where, in the menus, to turn on the "tpm" chip, I would much appreciate it.
Right now, the following menu selections are at the top, "File - Storage - Security - Power - Advanced."
Distribution: Ubuntu based stuff for the most part
Posts: 1,173
Rep:
Most consumer computers do not have TPM chips installed as they tend to be a business/server class item. So if you can't find it in the Bios, it's not installed.
Most consumer computers do not have TPM chips installed as they tend to be a business/server class item. So if you can't find it in the Bios, it's not installed.
My HP is an old business computer (HP elitedesk etc.. etc.. etc..).
I suppose I can just ignore it - no harm done, right? [interesting that 20.x lts didn't do this....]
After doing a clean installation to Ubuntu 22.04 lts, upon boot up each time, I get around a dozen error messages flash across the screen,
The repeated error messages are similar to "ima: error communicating to tpm chip"
Just curious what this is (?)
Addendum: I believe I found the solution (at https://askubuntu.com/questions/1178...es-during-boot), to simply turn on the tpm chip in bios..
I pressed F10 repeatedly and got into the BIOS. Anyone that can point me to where, in the menus, to turn on the "tpm" chip, I would much appreciate it.
Right now, the following menu selections are at the top, "File - Storage - Security - Power - Advanced."
Any help please
The link you posted is truncated and invalid. And not sure what you're 'curious' about, since the error is clear; your system is trying to read the TPM chip and cannot. Seems pretty obvious.
And are you asking us which things to click and what to do on your machine, rather than looking around yourself??? If you want to be spoon-fed to that degree, it would be helpful to actually *POST DETAILS ABOUT YOUR HARDWARE* (as you've been asked many times previously in other threads). We can't guess as to what brand/model/year/version-of-bios you have to walk you explicitly through what to do. Did you consider, maybe, looking up the user manual for your system/motherboard??? Probably be a good start, rather than asking us to do it for you.
Quote:
Originally Posted by Michael Piziak
My HP is an old business computer (HP elitedesk etc.. etc.. etc..). I suppose I can just ignore it - no harm done, right? [interesting that 20.x lts didn't do this....]
So an 'etc., etc., etc.' model?? Do you expect us to guess as to the model/year?? And again, did you bother looking at the HP website? Since about 2014 their systems come with TPM, and they have manuals about how to enable it, and BIOS updates as well.
Some small bits of research would tell you that TPM can be labeled PTT (Platform Trust Technology), and is typically in the "Security" portion of your BIOS. As a 'scientist', doing research should be familiar.
"My HP is an old business computer"
Guessing it doesn't have a TPM module but check bios again for above terms.
You can ignore it if it otherwise boots correctly. I had that complaint on some install but didn't stop me.
"My HP is an old business computer" Guessing it doesn't have a TPM module but check bios again for above terms. You can ignore it if it otherwise boots correctly. I had that complaint on some install but didn't stop me.
The vague description given would indicate it's there. There are several BIOS updates for those systems, many mention TPM/PTT. Since the OP doesn't give anything besides "etc., etc., etc.", they can look up the updates/manual on their own.
Yeah, I guess it is too difficult to turn the laptop over and read the label with the system information on it. Or turn it around to read the label on the top, back, or side for the desktop model.
Too difficult for him to run a google search like "how to find model number on an hp elitedesk" and get the hp documentation on how to do that.
Since he did not even know to look in the security section of bios for configuring that security chip I wonder exactly how he even uses a computer.
Yeah, I guess it is too difficult to turn the laptop over and read the label with the system information on it. Or turn it around to read the label on the top, back, or side for the desktop model.
Too difficult for him to run a google search like "how to find model number on an hp elitedesk" and get the hp documentation on how to do that.
Since he did not even know to look in the security section of bios for configuring that security chip I wonder exactly how he even uses a computer.
Welcome to my ignore list. You and TBOne have fun in their playing with one another - the only 2 in there. TBOne was already on the list, I don't know what keeps attracting him to me. BTW, I'm elderly with a disability, so yes, I do have problems do computer things - I'm actually lucky to do what I can.
Last edited by Michael Piziak; 05-04-2022 at 02:07 AM.
I have checked BIOS several times and the term isn't in the bios anywhere.
There is one section in the bios that has all these disabled except 2
-Data exec. prevention (this is enabled)
-virtual tech (VTx)
-Virt. tech directed I/O (VTd)
-Trusted exec. tech (greyed out but disabled also)
-embedded security device
-reset to fact. settings - do not reset (greyed out)
-measure boot variables/devices to PCR1 (greyed out & also disabled)
-OS management of embedded sec. device (is enabled)
-reset embedded security device though OS
-no PPI provisioning
-allow PPI policy to be changed by OS
changed "Embedded Security Device" to "device hidden"
The tpm error message went away during boot, but
now get message: "Can't evaluate _CRS 12311" quickly during boot
I wander if it's better to have this message or the previous one about tpm - regardless, neither seems to affect the operation of the operating system....
Last edited by Michael Piziak; 05-04-2022 at 02:56 AM.
Welcome to my ignore list. You and TBOne have fun in their playing with one another - the only 2 in there. TBOne was already on the list, I don't know what keeps attracting him to me.
Because this is a community forum, where others (who show actual effort) come to learn. By answering, they can find things out. And didn't you claim to put boughtonp on your little list as well?? https://www.linuxquestions.org/quest...5/#post6336624
Quote:
BTW, I'm elderly with a disability, so yes, I do have problems do computer things - I'm actually lucky to do what I can.
Sorry, this card doesn't play here. There is ZERO reason you can't actually do research on your own...since you can type, you can use a search engine. And having to tell you repeatedly to provide details and actually show your efforts is just plain rude. If you're 'elderly', that means you've been alive long enough to know how to listen/learn, and not have temper tantrums about shoving people on 'lists' when they challenge you. You may be elderly, but still need to grow up apparently.
Quote:
Originally Posted by Michael Piziak
It's an HP-EliteDesk 800 G1 SFF
I have checked BIOS several times and the term isn't in the bios anywhere. There is one section in the bios that has all these disabled except 2 -embedded security device
And you couldn't say this when you posted why?? And bolded a part above....this is where you actually doing something comes into play. Did it not occur to you that the 'embedded security device' is TPM?? Might have, because if you did research, that's one of the things it could be called. And as you were spoon-fed earlier, the HP Elitedesk systems ALL have TPM on them. Why should we have to read manuals for you, and tell you what to click?? For someone who wants to 'spark discussion' it seems like you do very little to figure things out yourself. To wit:
We should somehow explain what swap memory is, how to remove a folder from your desktop, and many other things that you could easily figure out. Either you want to learn and show effort, or want to be spoon fed everything. If it's the latter, good luck.
It's an There is one section in the bios that has all these disabled except 2
[…]
-embedded security device
[…]
-OS management of embedded sec. device (is enabled)
-reset embedded security device though OS
Try:
embedded security device = enabled
OS management of embedded sec. device = enabled
If a TPM related error message occur toggle "reset embedded security device though OS".
If a TPM related error message still occur try:
embedded security device = disabled
OS management of embedded sec. device = disabled
If a TPM related error message occur toggle "reset embedded security device though OS".
Hint: Some BIOS and UEFI setups uses "yes" instead of "enabled" and "no" instead of "disabled".
Try:
embedded security device = enabled
OS management of embedded sec. device = enabled
If a TPM related error message occur toggle "reset embedded security device though OS".
If a TPM related error message still occur try:
embedded security device = disabled
OS management of embedded sec. device = disabled
If a TPM related error message occur toggle "reset embedded security device though OS".
Hint: Some BIOS and UEFI setups uses "yes" instead of "enabled" and "no" instead of "disabled".
Thanks for the effort and I tried them with no avail.
The only thing that stops the tpm error messages is to change "Embedded Security Device" to "device hidden" as I posted previously from a video I watched.
Now, the only message at beginning of boot up is "Can't evaluate _CRS 12311"
I don't think this, or the tpm error, is harmful, so I'll just live with it. Thanks again!
p.s. To TBone, I can't read the messages you keep leaving. Perhaps you are getting some satisfaction that you have a different audience.
Thanks for the effort and I tried them with no avail. The only thing that stops the tpm error messages is to change "Embedded Security Device" to "device hidden" as I posted previously from a video I watched. Now, the only message at beginning of boot up is "Can't evaluate _CRS 12311"
I don't think this, or the tpm error, is harmful, so I'll just live with it. Thanks again!
Again:
Update your BIOS, and the TPM chip will function; again, some basic research on your part will tell you this, because the manual and downloads for your system *SPECIFCALLY SAY* it addresses issues with the TPM device.
The "Can't evaluate _CRS 12311" message is ACPI related, because a device isn't initialized when it's queried, and returns a 0, which shouldn't happen. It is merely a warning.
Quote:
p.s. To TBone, I can't read the messages you keep leaving. Perhaps you are getting some satisfaction that you have a different audience.
Again, grow up. This is a community forum, and the people you have on your ignore list are the only ones who seem to call you on your behavior and lack of effort and you lack the courage to even read words on a screen. I don't answer things here FOR YOU, they are answered for the COMMUNITY, and people (unlike yourself) who actually do research and might find this thread.
For a self-proclaimed 'scientist', it's amazing you can't seem to do research.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.