Can you add TPM module to your Windows
TPM 2.0 is called Trusted Platform Module, 2.0 refers to the version. It is a chip attached to your motherboard designed to enhance PC security, which can be regarded as a secure encryption processor, because it has the role of managing and storing keys. It is a security chip to protect computer data, which protects the privacy of the user. If the computer is hacked, the information will not be stolen and the key will not be leaked out. In this way, TPM 2.0 has greatly improved the security of computer.
Microsoft has required manufacturers to include TPM 2.0 to all new devices since July 28, 2016. If you have a newer mainboard model introduced after 2016, you may have a TPM 2.0 chip, but it may be disabled by default. If your computer is pre-2016, then it may have an older TPM version 1.2 or may not support TPM.
How to enable TPM 2.0 in Windows 10 Settings
First of all, you can press Win+R to open the Run window, then type tpm.msc to check whether you have enabled TPM. If it shows “ Compatible TPM cannot be found”, then it proves that the current system has a TPM that is disabled.
If you want to enable TPM, these settings are managed via the UEFI BIOS (PC firmware) and vary based on your device. In next part, I will introduce how to add TPM module based on Windows 10.
- Open Settings >> Update & Security >> Recovery >> Restart now.
2. Click Troubleshoot >> Advanced options >> UEFI Firmware Settings >> Restart.
Tip: If you have an older BIOS, this UEFI Firmware Settings option will not be available, please use the boot key to enter setup.
After you finish the steps, the device will restart and boot into the UEFI firmware which allows you to change advanced settings, such as to disable or enable secure boot, change boot order, set up a hardware RAID array, enable virtualization, and other settings depending on the motherboard support.
3. The system will reboot and load into BIOS. Select Security settings.
Tip: It’s recommended to call your manufacturer to find the security settings since the UEFI settings are different per manufacturer.
4. Select Trusted Platform Module (TPM) option and press Enter.
5. Select Enabled, and press Enter.
6. Save the settings and exit the UEFI settings. Restart the computer, you can check if your PC meets the Windows 11 requirements on PC Health.
How to install TPM module via boot key
If you don’t have UEFI Firmware Settings option, there is another way to enable TPM module through boot key.
1. Please click Power button, then select restart your computer.
2. When it boots up, you might have seen a manufacturer logo on the screen and a line of text at the bottom. On the splash screen, you need to quickly press the required key to enter setup or system configuration. The required keys are depended on what kind of computer you have. Typically, press the Esc, Delete, or one of the Function keys (F1, F2, F10, etc.).
3. Access to security settings, then locate TPM (name may vary) and press Enter. On AMD systems, it appears as fTPM.
4. Enable TPM.
How to install Windows 11 in virtual machine without TPM issue
For those who want to try Windows 11 and cannot enable TPM using the above method, you can refer to this section.
When installing Windows 11 without TPM, it will show “This PC can’t run Windows 11”. Press and hold “Shift + F10” to open CMD. Then type the following command and press Enter.
REG ADD HKLM\SYSTEM\Setup\LabConfig /v BypassTPMCheck /t REG_DWORD /d 1
The command line is used to disable the Windows 11 installer’s checking of TPM.
Return to the installation screen and install Windows 11 on virtual machine, you will find that the Windows 11 installation can continue successfully. If your virtual machine still does not support Windows 11, you can reopen CMD and enter this command again until the Windows 11 installation can proceed without any problems.
How to backup and protect Windows 11 virtual machine
Frequent pop-ups, unexpected software installation, inexplicable deletion of computer data and hacker attacks bring risk to your business. In addition to install TPM, enterprises need to pay special attention to how to protect data security.
If you’ve never been in to BIOS and warned during changing the settings, these operations may threaten your data security or computer functions. If you are unsure and feel unsafe to make big changes, always backup your virtual machine and data.
In order to meet the requirements of enterprise backup, I will use AOMEI Cyber Backup to create a powerful backup task for virtual machine protection. It supports VMware ESXi 6.0–7.0 and Hyper-V host 2012 and later.
With ACB, you can benefit from the following features.
Reliable VMware & Hyper-V Backup: continuously protect your unlimited virtual machines and data.
Centralized Management: easy to use central console to backup and manage multiple virtual machines based on a few clicks.
Hot backup: perform virtual machine hot backup and protect VM data without any disruption.
Instant Disaster Recovery: quickly restore virtual machine to normal state (even to another host), reduce business downtime and financial loss.
1. Install AOMEI Cyber Backup, then add and bind your VMware or Hyper-V devices. Next, I will take VMware ESXi backup as an example.
2. Create Backup Task: click Backup Task >> Create New Task to create a secure backup task.
With an affordable price, AOMEI Cyber Backup protects your virtual machines forever and assists your business development.
Summary
Adding the TPM module in Windows improves the security of your computer. Whether you are upgrading your system or changing settings, please remember: back up your data before making any big changes, which avoids serious business losses from system or human errors.
