Determines who may read the Storage Root Key's (SRK) public key stored in a Trusted Platform Module. The SRK public key requires particular protection, since the Security Platform can be identified by it.
Enabled: An administrator can retrieve the SRK public key not only locally but also remotely.
Disabled: Retrieving the SRK public key remotely is not allowed.
The migration step Automatic export and authorization requires that this setting is enabled on the migration destination computer.
This policy requires that all involved computers are members of trusted domains. It is only relevant for operating systems that support domain membership.
Default value: Disabled
| Registry Hive | HKEY_LOCAL_MACHINE |
| Registry Path | Software\Policies\Infineon\TPM Software |
| Value Name | ReadPubSRKRemote |
| Value Type | REG_DWORD |
| Enabled Value | 1 |
| Disabled Value | 0 |