How to fix your device cannot use a Trusted Platform Module: Allow BitLocker without a compatible TPM
The trusted platform module (TPM) is a hardware component installed in many newer computers by computer manufacturers. It works with BitLocker to help protect user data and to ensure that a computer has not been tampered with while the system was offline. BitLocker offers the option to lock the normal startup process until the user supplies a personal identification number (PIN) or inserts a removable USB device, such as a flash drive, that contains a startup key. These additional security measures provide multifactor authentication and assurance that the computer will not start or resume hibernation until the correct PIN or startup key is presented. Kindly refer to the following TPM related guides: How to upgrade Windows 10 with an unsupported CPU and TPM 1.0 to Windows 11, How to Install Windows 11 in Oracle VirtualBox with no TPM Support, How to delegate permissions for backing up TPM password, How to clear the TPM via the management console or Windows Defender Center App.
Here is an example of an FDE solution with PBA “how to download DriveLock software and install DriveLock” that I have tested. kindly take a look at this guide as well “Important DriveLock components to master.Note: On devices without TPM version 1.2 and above, you can still use BitLocker to encrypt the Windows OS drive. However, this implementation will require the user to insert a USB startup key to start the computer or resume from hibernation, and does not provide the pre-startup system integrity verification offered by BitLocker working with a TPM.
Note: There is no dare consequence of having BitLocker without a TPM, the difference here is that the encryption key will be saved to a USB instead of being stored on the chip itself.
The following error below was prompted when I tried simulating what could happen on devices without TPM. "This device can't use a Trusted Platform Module. Your administrator must select the "Allow BitLocker without a compatible TPM" option in the "Require additional authentication at startup" policy for OS volumes".
To resolve this error, we will have to configure the local Group Policy settings to “Allow BitLocker without a compatible TPM”. For more information on Group Policy, please see the following guides “what is Group Policy Object and how can it be launched“, how to analyze group policies applied to a user and computer account, and for a comprehensive list of articles I have written on GPO, please visit the following link.
There are numerous ways to launch the Group Policy Editor in Windows 10.
– Open the Group Policy Editor by pressing the Windows Key + R and type “gpedit.msc”
– Or from the Windows search box, type “gpedit.msc” and press Enter.
This will open the Local Group Policy Editor as shown below
Navigate to the following path as shown below. - Computer Configuration - Administrative Templates - Windows Components - BitLocker Drive Encryption - Operating System Drives
On the right pane of the window, you will see an option called “Require additional authentication at startup”.
– Double-click on that option.
– This is currently set to “Not Configured”. We will have to change this by selecting the “Enabled” radio button.
– This will check the Allow BitLocker without a compatible TPM box by default as shown below.
Click on Okay. As you can see the policy has been enabled.
Now you can now proceed and continue with your BitLocker activation as described in this guide “How to enable BitLocker on Windows 10” or this link.
Note: These Group Policy changes take effect immediately,, there is no need for reboot or apply GPupdate. See this guide for more information on GPUpdate Switches: GPUpdate vs GPUpdate force
I hope you found this blog post helpful. If you have any questions, please let me know in the comment session.
RELATED
How to Solve the error “Group Policy Settings for BitLocker Startup Options are in Conflict and cannot be Applied”
In "Security | Vulnerability Scans and Assessment"
Categories
Categories Select Category Anti-Virus Solution Automation AWS/Azure/OpenShift Backup Configuration Management Tool Containers Hardware Servers JIRA|Confluence|Apps Linux Mac OS Microsoft (Office|Workflow) Microsoft Exchange/Office365 Network Network Monitoring Oracle/MSSQL/MySQL Password Manager Reviews Scripts Security | Vulnerability Scans and Assessment Storage Telephone Version Control System Virtualization Web Server Windows Windows Server
Recent Posts
- How to fix Windows Microsoft Store not opening
- How to Stop OneDrive from Starting Up Automatically on Windows 11
- How to Back Up and Restore the Windows Registry
- Retrieve Recent Windows Update: How to create batch script files on Windows 11
- How to remove malware using Microsoft Safety Scanner on Windows 10 and 11
Archives
Archives Select Month July 2023 June 2023 May 2023 April 2023 March 2023 February 2023 January 2023 December 2022 November 2022 October 2022 September 2022 August 2022 July 2022 June 2022 May 2022 April 2022 March 2022 February 2022 January 2022 December 2021 November 2021 October 2021 September 2021 August 2021 July 2021 June 2021 May 2021 April 2021 March 2021 February 2021 January 2021 December 2020 November 2020 October 2020 September 2020 August 2020 July 2020 June 2020 May 2020 April 2020 March 2020 February 2020 January 2020 December 2019 November 2019 September 2019 August 2019 July 2019 June 2019 May 2019 April 2019 March 2019 February 2019 January 2019 December 2018 July 2018 June 2018 May 2018 March 2018 November 2017 April 2017 January 2017 November 2016 May 2016 April 2016
Post navigation
Hands-on on Windows, macOS, Linux, Azure, GCP, AWS
Archives
Archives Select Month July 2023 June 2023 May 2023 April 2023 March 2023 February 2023 January 2023 December 2022 November 2022 October 2022 September 2022 August 2022 July 2022 June 2022 May 2022 April 2022 March 2022 February 2022 January 2022 December 2021 November 2021 October 2021 September 2021 August 2021 July 2021 June 2021 May 2021 April 2021 March 2021 February 2021 January 2021 December 2020 November 2020 October 2020 September 2020 August 2020 July 2020 June 2020 May 2020 April 2020 March 2020 February 2020 January 2020 December 2019 November 2019 September 2019 August 2019 July 2019 June 2019 May 2019 April 2019 March 2019 February 2019 January 2019 December 2018 July 2018 June 2018 May 2018 March 2018 November 2017 April 2017 January 2017 November 2016 May 2016 April 2016Tags
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article