BitLocker provides additional protection when it is used with a Trusted Platform Module (TPM) chip. The TPM chip is a hardware component installed in many newer computers by the computer manufacturers. Microsoft BitLocker Administration and Monitoring (MBAM) uses BitLocker in addition to the TPM chip to help provide additional protection of your data and makes sure that your computer has not been tampered with.

How to Set Up Your TPM

If your organization has configured BitLocker to use a TPM chip, when you start the BitLocker Drive Encryption wizard on your computer it will check for a TPM chip. If BitLocker finds a compatible TPM chip, you may be prompted to restart your computer in order to enable the TPM chip for use. As soon as your computer has restarted, follow the instructions to configure the TPM chip in the BIOS (a pre-Windows layer of your computer software).

As soon as BitLocker is configured, you can access additional information about the TPM chip by opening the BitLocker Encryption Options tool in the Windows Control Panel and selecting TPM Administration.

You must have administrative credentials on your computer to access this tool.

Troubleshooting TPM Issues

In a TPM failure, a change in the BIOS, or certain Windows Updates, BitLocker will lock your computer and require you to contact your help desk to unlock it. You have to provide the name of your computer as well as your computer’s domain. Help desk can give you a password file that can be used to unlock your computer.

See Also