Using BitLocker Without a Trusted Platform Module (TPM)

You might know which version of Windows have BitLocker—full disk encryption, such as  Windows Vista, Windows 7 Ultimate and Enterprise, Windows 8/ 10 Pro, Enterprise, and you may also know there is no Bitlocker Windows 10 Home.

Normally, you need a Trusted Platform Module 2.0 or 1.2 to use BitLocker Windows 10. As this TPM chip can produce and store encryption keys, thus making BitLocker fully encrypt sensitive data for you.

But when you enable the BitLocker Drive Encryption to encrypt a drive on Windows 10, it displays a BitLocker problem as the screenshot below saying This device can’t use a Trusted Platform Modules. There is no computer with TPM 2.0 chip for BitLocker.

this device cannot use a trusted platform module

What can you do to allow Windows 10 BitLocker without a compatible TPM? Like ASUS TPM chip or Intel TPM 2.0 module or Gigabyte TPM module.

In fact, no matter you are using old hard disk or the new one, it is possible that the Trusted Platform Module Windows 10 does not exist, the computer manufacturers just have not made it for you.

So go with the following steps to apply BitLocker in Windows 10 without TPM. Even without Trusted Platform Module Windows 7 or Windows 10, you can also easily enable BitLocker Drive Encryption in Group Policy.

You need to make sure you have administrative privileges at first.

1. Press Windows + R to open the Run box.

2. In the box, enter gpedit.msc and then click OK.

run gpedit.msc

3. In Local Group Policy, go as the path on the left pane.
Computer Configuration/Administrative Templates/ Windows Components/ BitLocker Drive Encryption/ Operating System Drives

operating system drives

4. Under Operating System Drives, on the right pane, locate and right click Require additional authentication at startup to Edit it.

require additional authentication at startup

5. In Require additional authentication at startup window, tick the box of Enabled and then Allow BitLocker without a compatible TPM.

allow bitlocker without a compatible tpm

After that, hit Apply and OK.

6. Close the Local Group Policy.

Now you are able to set up BitLocker Drive Encryption without Trusted Platform Module, instead, a password or startup key on a USB flash drive is capable of encrypting your drive with BitLocker even with on Windows 10 TPM.

Hope the ways above can help you use the BitLocker when there is no TPM chip on your laptop or desktop. In this way, now you are qualified to turn on Windows 10 BitLocker with or without TPM.

Leave a Reply

Your email address will not be published. Required fields are marked *