@Dung Nguyen
Hi,
-TPM cannot control the software that is running on a PC. TPM can store pre-run time configuration parameters, but it is other applications that determine and implement policies associated with this information.
-No, you can't. Every BitLocker-encrypted drive has its unique 48-digit BitLocker recovery key which was automatically generated when setting up the BitLocker drive encryption.
-The following information may help you locate your recovery key:
https://support.microsoft.com/en-us/windows/finding-your-bitlocker-recovery-key-in-windows-10-6b71ad27-0b89-ea08-f143-056f5ab347d6
-It seems like BitLocker was enabled automatically based on how the Windows 10 image was configured.
It should depend on your computer brand. Based on my research, some systems ship with BitLocker "prepped", and if you choose to link your Windows logon account to a Microsoft account, BitLocker is automatically enabled because the Recovery Key is backed up to the Microsoft account you linked with.
Unfortunately if you don't know the password, don't have a Recovery Key, and don't have an auto-unlock file anymore elsewhere, then the data is lost. If there was some way to access the data without any of those things, then unfortunately the encryption would be effectively useless.
Hope above information can help you.
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread
Hi,
No, it will not automatically delete or replace the old key.