Allow reading of unprotected TPM NV memory

Determines who may read unprotected Non-Volatile (NV) memory stored in a Trusted Platform Module 1.2. The NV memory may contain sensitive data.

Enabled:Specify whether only local administrators, local and remote administrators, all local users or all users may read unprotected NV data.

Disabled: No user may read unprotected NV data.

This policy is only relevant for Security Platforms with a Trusted Platform Module 1.2.
Note that the Security Platform administration and operation is not restricted by this setting.

Default value: Enabled/Local administrators

Supported on:

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Infineon\TPM Software
Value NameAllowReadingNVPol
Value TypeREG_DWORD
Enabled Value1
Disabled Value0

Select an option to enable:


  1. 1 - Local administrators
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSoftware\Policies\Infineon\TPM Software
    Value NameAllowReadingNV
    Value TypeREG_DWORD
    Value1
  2. 2 - Local and remote administrators
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSoftware\Policies\Infineon\TPM Software
    Value NameAllowReadingNV
    Value TypeREG_DWORD
    Value2
  3. 3 - All local users
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSoftware\Policies\Infineon\TPM Software
    Value NameAllowReadingNV
    Value TypeREG_DWORD
    Value3
  4. 4 - All users
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSoftware\Policies\Infineon\TPM Software
    Value NameAllowReadingNV
    Value TypeREG_DWORD
    Value4


ifxsppol.admx