|
After upgrading FortiGate to v7.6.3, setting private-data-encryption to enable in the global settings is not working. It gives the following error.
FGT# config system global
FGT(global) # set private-data-encryption enable
command parse error before 'private-data-encryption'
Command fail. Return code -61
Starting from v7.6.3, the private data encryption feature will be supported on devices that contain a Trusted Platform Module (TPM).
To check if the FortiGate device has a TPM, verify all the following commands exist. Otherwise, the platform does not support it.
diagnose hardware deviceinfo tpm
diagnose hardware test tpm
Additionally, the following command will also confirm if a TPM is detected on the device. The output line 'tpm: detect' confirms the presence; if this output line is absent, the device is not equipped with a TPM.
FortiGate-91G # diagnose hardware test info
List of test cases:
bios: sysid
<.....>
disk: file-data
disk: file-data2
disk: hdd-block-wrv
disk: file-varlog
led: sys-led
led: nic-led
disk: disk
tpm: detect
ble: detect
Related documents:
Managing FortiGates with private data encryption
Trusted platform module support
|
