PCCS Admin Tool¶

The PCCS Admin Tool is a Python* script that contains a set of commands to allow an administrator to manage the data cached inside PCCS. The tool's primary function is to help administer a PCCS setup in an environment without a direct connection to the Internet (i.e., PCCS configured in OFFLINE cache fill mode). The tool can also be used to trigger PCCS to refresh the collateral before they expire as well as refresh the data for a TCB Recovery.

Note

The PCCS Admin Tool input/output file formats are compatible with the PCS Client Tool so that both tools can be used together in order to complete an end-to-end platform registration flow in an air-gapped environment. Refer to Platform Registration for a flow description.

Supported Operations¶

The following operations are supported by the tool:

`get`¶

Retrieves queued platform registration from the PCCS using the Get Platform IDs API.

`put`¶

Imports the quote generation collateral (i.e. PCK Certificates) and quote verification collateral into the PCCS using the Put Platform Collateral to Cache API.

`refresh`¶

Request PCCS to refresh certificates and collateral in cache database using the Refresh through HTTP Request API of the PCCS. This operation only supported in LAZY or REQ cache fill mode – not in OFFLINE cache fill mode.

Download information¶

The PCCS Admin Tool can be found in the PCCS repository on GitHub*. The tool's command-line syntax and latest usage information are available in the README located in the same directory.

PCCS Admin Tool¶

Supported Operations¶

get¶

put¶

refresh¶

Download information¶

`get`¶

`put`¶

`refresh`¶