The Trusted Platform Module (TPM) is a dedicated chip that secures the computer using a cryptographic key. It adds a hardware level to the security protocol on your Windows Device. Moreover, upgrading to Windows 11 requires you to have TPM 2.0 integrated and enabled on your devices.
The TPM 2.0 can be enabled easily from the BIOS. However, you must first ensure that this security module is available on your device. Additionally, the BIOS mode also determines the availability of TPM 2.0 on your computer.
Today we will guide you through these intricacies of the TPM 2.0 and help you to enable it from the BIOS.
How to Enable TPM 2.0 in BIOS?
As per Microsoft, the new TPM standard secures the Windows computer from malware attacks and protects sensitive information like encryption keys and user credentials. You can go through Microsoft Documentation to learn more about how TPM works and its technicalities.
The process required to enable TPM 2.0 is simple and quick as well. But it can be confusing for some, as the BIOS settings can vary depending on the device and the CPU. The TPM 2.0 is only supported by the UEFI BIOS. Thus, if you have Legacy and CSM Modes of the BIOS, you will not be able to configure the TPM 2.0 settings on your device.
To check the BIOS mode on your Windows device, follow these steps.
- Press Windows Key + R to open Run.
msinfo32and hit enter. This will launch the System Information window.
- In the System summary page, search for the BIOS Mode. If it is UEFI, you can be eligible for the TPM 2.0.
Once the BIOS Mode is determined follow this process to enable the TPM 2.0 on your Windows device.
Check the TPM 2.0 Status
The TPM is already available on the latest Windows devices to offer compatibility with the newer versions of the Windows operating system. Therefore, it is better to check if the module is already enabled. Additionally, if you are unsure, you must confirm that this module is available on your device using the procedures described below.
You can use different methods to check the status of TPM 2.0. Here’s how you do it using different Windows Utilities.
From TPM Management Tool
TPM management Tool allows users to Manage and configure the TPM security module. You can check if the TPM 2.0 is available and enabled on your device from this application.
- Open Run by pressing Windows key + R.
tpm.mscand hit Enter.
- On the TPM management window, you must see the details of the TPM, including the Specification Version and Manufacturer Version.
- If the TPM 2.0 is not found on your device, you will get prompted Compatible TPM cannot be found.
From Device Manager
The device manager lists security device drivers, including the TPM 2.0. You can also check if you have this security module from the Device manager.
- Press Windows Key + X and open the Device Manager.
- Find Security devices under the list of devices and expand it.
- If the Trusted Platform Module 2.0 driver is available in the list, you dont need to enable it from the BIOS.
From Command Prompt
There is also a command line that lets you see the TPM 2.0 details. This gives you information about the module, like specifications, availability, and much more. Follow this method to use the command line and check the status of TPM 2.0.
- Press Windows Key + X.
- Open Windows Terminal (Admin) to launch the command prompt with elevated privileges.
- Execute this syntax to see if TPM 2.0 is available and enabled.
wmic /namespace:\\root\cimv2\security\microsofttpm path win32_tpm get * /format:textvaluelist.xsl
Enable TPM 2.0
If it has been assured from the above processes that the TPM 2.0 is available but is disabled in your system, you can re-enable it from the BIOS.
- Go to the Start menu and click on the boot options.
- Click on the Restart button while holding down the Shift Key. You will not get booted to the Windows RE.
- Go to Troubleshoot > Advanced Options > UEFI Firmware Settings.
- Click on Restart.
- You will now get booted into the BIOS (UEFI).
- Go to the Security Tab. The options to enable the TPM can be on different tabs or menus in the BIOS. Search in the Advanced or Trusted Computing tab if you don’t find the options.
- Navigate to the TPM 2.0 Security sub-menu and hit Enter. This sub-menu can also be named as TPM State, Intel PTT, Security Device, AMD PSP fTPM, Intel PTT, Security Device, Security Device Support, TPM State, AMD PSP fTPM, Intel PTT, and Intel Platform Trust Technology.
- Change the status to Enabled.
- Save the changes made and exit from the UEFI.