StevenWhiting.com

A place for info I've learnt in IT & stuff. (I get a little kick back from affiliate ads & links, just so you are aware)

Browsing Posts tagged Bitlocker

http://social.technet.microsoft.com/Forums/windows/en-us/66b8fa61-5603-4e9b-a7de-e8226086e568/bitlocker-requests-encryption-key-at-every-boot?forum=itprovistasecurity

First disable Bitlocker (do not decrypt!!!)

2. take ownership of the TMP chip
3. reboot
4. Initialize TPM chip enter pswd on TMP chip
5. Enable Bitlocker

drive is still encrypted and your tmp chip is loaded. and won’t request keys on boot.

regards.
Patrick Veldboer

Boot the laptop and then enter the Bit Locker unlock code (from awdc05)

Plug the laptop into the network and then log on as your admin user

Control Panel -> Bit Locker Drive Encryption

Suspend Protection

Choose the option to suspend Protection-> Reboot

Note that you are still asked to enter the Bit Locker Code

Restart and then go into the BIOS

Security-> TPM-> Choose the option to disable-> Save then exit

Log on to Windows-> Control Panel-> Bit Locker Drive Encryption

Resume Protection

Choose the option to Resume Protection – Message: Activate TPM first

Take ownership

Launch TPM Administration -> Initiate TPM

At this point you will get a message saying that the machine will restart and then follow the instructions. (Something like press F10 to continue)

Go into the BOIS – Activate TPM

Log into Windows -> Bit Locker Drive Encryption -> Restart Protection

As found by Sheldon 🙂

TPM is on in the bios and you know full well the laptop has a TPM module.  Yet Windows keeps claiming one doesn’t exist.

Tested on a Dell Latitude E6320.  Using a standard build rolled out via SCCM.

Possible a driver issue.  No security module option appearing in Device Manager.

Go to System Devices in Device Manager and if you see the Broadcom TPM there, if so uninstall and make sure to tick the box that says remove the software, otherwise when you reboot it will just silently reinstall.

Once removed, I rebooted and all was fine.  The proper Security section in Device Manager appeared.  Then Windows 7 was able to Bitlocker the drive.

http://www.petri.co.il/walkthrough-for-bitlocker-on-windows-7.htm