This function creates an archive of keys generated by your TPM. The TPM will create keys as requested by secure applications. Some events causing the creation of keys may be (1) setting up your password management program for the first time, (2) generating a digital certificate, or (3) creating a secure document vault. After creating keys for your secure applications, you will need to return to this option and select Archive to ensure that all of your keys are archived.

When archiving keys for the first time, you will need to specify an archive location, you must set an archive password to access the archive, and you will also be required to enter the TPM Owner Password. Make sure that you specify the archive location as removable media, such as a USB flash drive or network drive, to protect against a hard drive failure. Please make a note of the archive password and archive location as you will need this information to restore the keys at a later time.

If your PC has multiple users of the TPM, each user must archive his/her keys.

Steps to Archive your TPM Keys

1. Start the EMBASSY Security Center and select Archive and Restore (as shown in Figure 3.57) then click on Archive.
2. This will start the Archive process by prompting you to select a location to store the (as shown in Figure 3.58). Select the location and click OK to continue.
3. You will now be prompted to create a password for the archive (see Figure 3.59). Do not loose this password; you will not be able to restore the keys without it.
4. Next enter the TPM password and press OK to continue (see Figure 3.60).
5. When the archive procedure is completed you will see a message stating so as shown in Figure 3.61.