Dave One thing that isn't clear to me: how (with what program, by what exact steps) did you originally generate your pair of keys and get your certificate?
I'm thinking now that perhaps you did it with some tool that did not use your TPM, and consequently, the private key was never in the TPM. Perhaps you did it with your mozilla-family product, or perhaps with Windows own certificate manager or cert enrollment software, and that software used its own native key generation and key storage, rather than the TPM. In that case, the private key you have now is not in your TPM, and getting it into the TPM may yet be a problem. Some TPM devices will only work with private keys that they generate themselves. That is, they will not let you import a private key into them. Now you have a cert and private key, working in mozilla (FF/TB/SM), but I think we have not yet established that the private key is in the TPM. You may find it difficult to import the private key into the TPM. So, assuming that you're the first of many future HP TPM users, please help us to understand exactly how you got that private key in the first place. -- Nelson B _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
