Allow BitLocker without a compatible TPM" error mesage, can't encrypt c drive with BitLocker

Nick Coe 0 Reputation points
2024-01-13T13:08:44.96+00:00

Need registry editing detail to allow win11 to run bitlocker.
At the moment it is refusing to recognise that the TPM is v2 and throwing this error:
"This device cannot use a Trusted Platform Module." etc.

OS is Win11 Pro 23H2 64Bit
AV software is ESET Endpoint.
Using GP is not an option.

Windows 11
Windows 11
A Microsoft operating system designed for productivity, creativity, and ease of use.
10,785 questions
0 comments No comments
{count} votes

3 answers

Sort by: Most helpful
  1. Azar 26,190 Reputation points MVP
    2024-01-13T13:21:48.26+00:00

    Hi Nick Coe Open the Registry Editor by pressing Win + R, typing regedit, and hitting Enter. Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\TPM and check for an entry named OSAttr. If it's not there, create a new DWORD (32-bit) Value named OSAttr and set its value to 1.

    Below are similar docs I found plz have a read.

    https://learn.microsoft.com/en-us/windows/security/hardware-security/tpm/initialize-and-configure-ownership-of-the-tpm https://answers.microsoft.com/en-us/windows/forum/all/tpm-20-not-being-recognized-by-windows-11/2ca4cd49-5717-42e7-b89c-201f87dac41f

    If this helps kindly accept the answer thanks much.

    0 comments No comments

  2. Thameur-BOURBITA 35,596 Reputation points
    2024-01-13T13:30:20.91+00:00

    Hi @Nick Coe

    You can use Group policy or registry key to enable Bitlocker without TPM. But the user should have recovery key to restart his machine:

    How to turn on Microsoft BitLocker Drive Encryption without a TPM (Trusted Platform Module)

    https://admx.help/?Category=Windows_11_2022&Policy=Microsoft.Policies.VolumeEncryption::ConfigureAdvancedStartup_Name

    Please don't forget to accept helpful answer

    0 comments No comments

  3. Kapil Arya 8,211 Reputation points MVP
    2024-01-17T11:21:43.7966667+00:00

    Hello,

    See if this fix helps you (works with Windows 11):

    https://www.kapilarya.com/fix-this-device-cant-use-a-trusted-platform-module-for-bitlocker-in-windows-10

    Let us know if this helps!

    Note: Included link in this reply refers to blog post by a trusted Microsoft MVP.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.