Allow BitLocker Without A Compatible TPM

IT Support Forum Forums Active Directory Group Policy General Discussion Allow BitLocker Without A Compatible TPM

Tagged: ,

This topic contains 0 replies, has 1 voice, and was last updated by  Webmaster 4 years, 2 months ago.

  • Author
  • #1330


    When you try to enable BitLocker on a PC without a compatible TPM CPU chip, you get this error:

    This device can’t use a Trusted Platform Module. Your administrator must set the “Allow BitLocker without a compatible TPM” option in the “Require additional authentication at startup” policy for OS volumes.

    It is possible to enable BitLocker without a compatible TPM chip, here’s how to allow BitLocker on a computer without a TPM chip.

    Set the following group policy to Enabled:

    Computer Policy –> Computer Configuration –> Administrative Templates –> Windows Components –> BitLocker Drive Encryption –> Operating System Drives -> Require additional authentication at startup

    Then put a tick in the Allow Bitlocker without a compatible TPM box, in the group policy.

    Computers with this policy should now be able to be encrypted with BitLocker even if they don’t have a compatible TPM chip.

You must be logged in to reply to this topic.