Issues with OS BitLocker and TPM present but disabled machine

whereismyaccess 0 Reputation points
2023-08-24T18:09:12.35+00:00

I'm trying to enable BitLocker on my OS drive on a computer that will not be the final destination machine but no combination of any options in the group policy "Require additional authentication at startup" prevents the machine booting into BIOS to ask me to enable the TPM when I try to enable BitLocker through Explorer(or an error about the configuration).

I've tried another method through command prompt, 'manage-bde -on c: -rp -pw" but that just returns the error "ERROR: The TPM cannot be used to protect this volume. The TPM is off. "

Is there another method I'm missing?

Windows 11
Windows 11
A Microsoft operating system designed for productivity, creativity, and ease of use.
8,103 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. S.Sengupta 14,811 Reputation points MVP
    2023-08-25T01:01:56.8933333+00:00

    The TPM might be disabled in your computer's BIOS/UEFI settings. To enable it, restart your computer and access the BIOS/UEFI settings (usually by pressing a specific key like F2, F10, Delete, or Esc during boot). Look for TPM-related settings and make sure it's enabled.

    If your TPM firmware is outdated, it might be causing compatibility issues. Check your computer manufacturer's website for any available firmware updates for the TPM.

    Ensure that the TPM-related services in Windows are running. You can check this by typing "services.msc" into the Windows search bar, then finding services like "Trusted Platform Module" and "BitLocker Drive Encryption Service." Make sure they are set to "Automatic" and are running.

    See also:

    Manage TPM commands