Windows 10: When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption...

Discus and support When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption... in Windows 10 Software and Apps to solve the problem; When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption keys stay the same and still work?... Discussion in 'Windows 10 Software and Apps' started by Victor Choutech, Jul 7, 2022.

  1. VICTOR CHOUTECH
    Victor Choutech Win User

    When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption...


    When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption keys stay the same and still work?

    :)
     
    Victor Choutech, Jul 7, 2022
    #1
  2. FRANK SEIFERT
    Frank Seifert Win User

    Will clearing the TPM make BitLocker encrypted data unavailable?

    Yes, the TPM can be safely cleared when the recovery key is available. In further support of @sleske's answer, here are excerpts from a Technet article on Bitlocker recovery.

     

     
     
    Frank Seifert, Jul 7, 2022
    #2
  3. SLESKE
    sleske Win User
    Will clearing the TPM make BitLocker encrypted data unavailable?

    tl;dr:

    Only if you have the BitLocker recovery key. If you clear the TPM, the encrypted drive will only be accessible using the recovery key.

    So in your case it should be ok to clear the TPM chip. Afterwards, reboot and enter the recovery key. Once inside Windows, you can re-enable the TPM chip and set a new PIN.

    Longer explanation:

    BitLocker usually (see below for exception) uses the computer's TPM chip to store the key required for decrypting the boot drive. If the TPM chip is cleared, this key is lost (for ever). In that case, the only way to decrypt the drive is to use the BitLocker recovery key - it exists specifically for cases like this.

    In practice, if you boot from a drive encrypted with BitLocker, and Windows finds it cannot retrieve the keys from the TPM chip, it will prompt you for the recovery key. You will get an ugly black & white screen asking for the key. If you enter the right key, Windows will boot normally. If you cannot enter the key - bad luck.

    For more information about how BitLocker works, also see this question on serverfault.com:
    TPM had to be reintialized: Does a new recovery password have to be uploaded to AD?

    Note:

    It is possible to use BitLocker without TPM, though the option needs to be enabled first. In that case, clearing the TPM will not make a difference. However, it looks like you are using BitLocker with TMP, so this does not apply in your case.
     
    sleske, Jul 7, 2022
    #3
  4. YAN.S
    Yan.S Win User

    When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption...

    Bitlocker without TPM

    Hi there,

    I'm trying to use Bitlocker without TPM

    My version is Windows 10 Home, and I try to follow -

    To turn on BitLocker Drive Encryption on a computer without a compatible TPM



    1. Click Start, type gpedit.mscin the Start Search box, and then press ENTER.
    2. If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Continue.
    3. In the Local Group Policy Editor console tree, click Local Computer Policy, click Administrative Templates, click Windows Components, and then clickBitLocker Drive Encryption.
    4. Double-click the setting Control Panel Setup: Enable Advanced Startup Options.
    5. Select the Enabled option, select the Allow BitLocker without a compatible TPM check box, and then click OK.
    You have changed the policy setting so that you can use a startup key instead of a TPM.

    1. Close the Local Group Policy Editor.
    2. To force Group Policy to apply immediately, you can click Start, typegpupdate.exe /forcein the Start Search box, and then press ENTER.
    3. Click Start, click Control Panel, click Security, and then click BitLocker Drive Encryption.
    4. If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Continue.
    5. On the BitLocker Drive Encryption page, click Turn On BitLocker. This will only appear with the operating system volume.
    6. On the Set BitLocker Startup Preferences page, select the Require Startup USB Key at every startup option. This is the only option available for non-TPM configurations. This key must be inserted each time before you start
      the computer.
    7. Insert your USB flash drive in the computer, if it is not already there.
    8. On the Save your Startup Key page, choose the location of your USB flash drive, and then click Save.
    9. On the Save the recovery password page, you will see the following options:
    · Save the password on a USB drive. Saves the password to a USB flash drive.

    · Save the password in a folder. Saves the password to a folder on a network drive or other location.

    · Print the password. Prints the password

    While I have a problem on step 4.

    Double-click the setting Control Panel Setup: Enable Advanced Startup Options.

    I can find "BitLocker Drive Encryption" on my group policy editor, while I cannot find
    Control Panel Setup: Enable Advanced Startup Options anywhere.

    Thank you for your help.

    Best Regards,

    Yan
     
    Yan.S, Jul 7, 2022
    #4
Thema:

When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption...

Loading...

  1. When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption... - Similar Threads - clearing TPM home

  2. DISK DRIVE AUTOMATICALLY BITLOCKER ENCRYPTED IN WINDOWS 11 HOME

    in Windows 10 Gaming
    DISK DRIVE AUTOMATICALLY BITLOCKER ENCRYPTED IN WINDOWS 11 HOME: One of my disk drive is showing locked in my computer and not asking for any password /key when I try to open it. In the disk management, it is showing as Bitlocker encrypted. But when I looked it up online, it says that bitlocker service is not available for windows 11 home...

  3. DISK DRIVE AUTOMATICALLY BITLOCKER ENCRYPTED IN WINDOWS 11 HOME

    in Windows 10 Software and Apps
    DISK DRIVE AUTOMATICALLY BITLOCKER ENCRYPTED IN WINDOWS 11 HOME: One of my disk drive is showing locked in my computer and not asking for any password /key when I try to open it. In the disk management, it is showing as Bitlocker encrypted. But when I looked it up online, it says that bitlocker service is not available for windows 11 home...

  4. Encrypted drive alterative to TPM.

    in Windows 10 Gaming
    Encrypted drive alterative to TPM.: Could I install Bitlocker to encrypt my drive to install windows 11 on a PC that is not fitted with a TPM? https://answers.microsoft.com/en-us/windows/forum/all/encrypted-drive-alterative-to-tpm/7e855a94-03b1-405d-a2f4-b9647b5d1cef

  5. Encrypted drive alterative to TPM.

    in Windows 10 Software and Apps
    Encrypted drive alterative to TPM.: Could I install Bitlocker to encrypt my drive to install windows 11 on a PC that is not fitted with a TPM? https://answers.microsoft.com/en-us/windows/forum/all/encrypted-drive-alterative-to-tpm/7e855a94-03b1-405d-a2f4-b9647b5d1cef

  6. When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption...

    in Windows 10 Gaming
    When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption...: When clearing the TPM in Windows 11 home on a laptop will the bitlocker drive encryption keys stay the same and still work? https://answers.microsoft.com/en-us/windows/forum/all/when-clearing-the-tpm-in-windows-11-home-on-a/54703f6c-7d76-4cea-a366-f177400de8dd

  7. open bitlocker encrypted external drive on win 11 home

    in Windows 10 Gaming
    open bitlocker encrypted external drive on win 11 home: Dear all,I have a bitlocker encrypted external drive, and I am using a laptop with win 11 home OS.There was no issue before a recent win 11 update, and I could open the encrypted drive with the password.However, since the win 11 update, the laptop with win 11 can not...

  8. open bitlocker encrypted external drive on win 11 home

    in Windows 10 Software and Apps
    open bitlocker encrypted external drive on win 11 home: Dear all,I have a bitlocker encrypted external drive, and I am using a laptop with win 11 home OS.There was no issue before a recent win 11 update, and I could open the encrypted drive with the password.However, since the win 11 update, the laptop with win 11 can not...

  9. How is the TPM involved when encrypting system drives with BitLocker?

    in Windows 10 Ask Insider
    How is the TPM involved when encrypting system drives with BitLocker?: Let's say I encrypt my laptop's hard drive with BitLocker and the protectors set are a numerical password (so the recovery key that I can access at aka.ms/myrecoverykey) and a TPM & PIN (so when I start the laptop to get into Windows it needs to recognize the TPM and I need...

  10. BitLocker - Clearing the TPM before Re-Install?

    in AntiVirus, Firewalls and System Security
    BitLocker - Clearing the TPM before Re-Install?: I have BitLocker enabled on my internal SSD drive with TPM and PIN protection. If I decide to reinstall Windows, do I need to Clear the TPM before doing so? 140818