Hide Forgot
Description of problem: Currently for FIPS considurations the TPS and TKS setup procedures require a manual step of creating a shared secret sym key that protects messages passing between TPS and TKS. It allows other keys to be wrapped and unwrapped in a secure fashion instead of passing raw key bytes over the wire. The procedure is currently a manual process aided by the TKSTool utility we already ship. Ideally, this whole thing could be automated in the TPS wizard. Possibly some TKS work will need to be done as well.
Upstream ticket: https://fedorahosted.org/pki/ticket/455