|
|
|
|
|
|
by Nextgrid
1021 days ago
|
|
|
The TPM covers cases where you want to authenticate the machine, not the user (who'd have a Yubikey they'd carry with them between machines). There are plenty of valid use-cases where you'd want the machine to authenticate itself to services (VPN to enterprise network?) before anyone logs in (or ever logs in, as in the case of servers who operate unattended). |
|
|
This one is huge: always-on VPNs mean enterprise security mandates don’t delay patching or other remote management tasks just because someone is on vacation or sick, and that stuff can happen at 3am on Sunday rather than when they start work. No more “please leave your computer on overnight” messages.