Overview for TPM module
Before the launch of Windows 11, most people were probably not aware of the TPM feature. For those who want to install Windows 11 operating system and have checked the system requirements, they may ask “what is TPM 2.0, and how to add tpm module to my PC?”
TPM is short for Trusted Platform Module, and 2.0 refers to the version. It is a chip attached to your motherboard designed to enhance PC security, which can be regarded as a secure encryption processor, because it has the role of managing and storing keys. It is a security chip to protect computer data, which protects the privacy of the user. If the computer is hacked, the information will not be stolen and the key will not be leaked out. In this way, TPM 2.0 has greatly improved the security of computer.
Can you add TPM 2.0 to your PC?
Microsoft has required manufacturers to include TPM 2.0 to all new devices since July 28, 2016. With this time point as the boundary, there are several different scenarios. You can make your own cross-reference first:
- If your computer was manufactured after 2016, it probably have a TPM 2.0 chip installed, but may be disabled by default. Then you will need to enable it on your computer;
- If your computer was manufactured after 2016, but does not have a TPM chip. You can purchase one and install it on the motherboard;
- If your computer was manufactured before 2016, but has a lower version of the TPM chip installed (TPM 1.2), you can try a firmware upgrade;
- If your computer was manufactured before 2016 and does not support the TPM chip, then you have no choice but to upgrade your computer to a more modern version.
How to enable TPM 2.0 in Windows 10 Settings
To check and enable TPM, you can press Win + R to open the Run window, then type tpm.msc to check whether you have enabled TPM. If it shows " Compatible TPM cannot be found", then it proves that the current system has a TPM that is disabled.
If you want to enable TPM, these settings are managed via the UEFI BIOS (PC firmware) and vary based on your device. In next part, I will introduce how to add TPM module based on Windows 10.
1. Open Settings >> Update & Security >> Recovery >> Restart now.
2. Click Troubleshoot >> Advanced options >> UEFI Firmware Settings >> Restart.
After you finish the steps, the device will restart and boot into the UEFI firmware which allows you to change advanced settings, such as to disable or enable secure boot, change boot order, set up a hardware RAID array, enable virtualization, and other settings depending on the motherboard support.
3. The system will reboot and load into BIOS. Select Security settings.
4. Select Trusted Platform Module (TPM) option and press Enter.
5. Select Enabled, and press Enter.
6. Save the settings and exit the UEFI settings. Restart the computer, you can check if your PC meets the Windows 11 requirements on PC Health.
How to install TPM module via boot key
If you don’t have UEFI Firmware Settings option, there is another way to enable TPM module through boot key.
How to add TPM module through boot key:
1. Please click Power button, then select restart your computer.
2. When it boots up, you might have seen a manufacturer logo on the screen and a line of text at the bottom. On the splash screen, you need to quickly press the required key to enter setup or system configuration. The required keys are depended on what kind of computer you have. Typically, press the Esc, Delete, or one of the Function keys (F1, F2, F10, etc.).
3. Access to security settings, then locate TPM (name may vary) and press Enter. On AMD systems, it appears as fTPM.
4. Enable TPM.
How to install Windows 11 in virtual machine without TPM issue
For those who want to try Windows 11 and cannot enable TPM using the above method, you can refer to this section.
When installing Windows 11 without TPM, it will show “This PC can’t run Windows 11”. Press and hold "Shift + F10" to open CMD. Then type the following command and press Enter.
REG ADD HKLM\SYSTEM\Setup\LabConfig /v BypassTPMCheck /t REG_DWORD /d 1
The command line is used to disable the Windows 11 installer's checking of TPM.
Return to the installation screen and install Windows 11 on virtual machine, you will find that the Windows 11 installation can continue successfully. If your virtual machine still does not support Windows 11, you can reopen CMD and enter this command again until the Windows 11 installation can proceed without any problems.
Reliable and free solution to protect Windows 11 virtual machines
Frequent pop-ups, unexpected software installation, inexplicable deletion of computer data and hacker attacks bring risk to your business. In addition to install TPM, enterprises need to pay special attention to how to protect data security.
If you’ve never been in to BIOS and warned during changing the settings, these operations may threaten your data security or computer functions. If you are unsure and feel unsafe to make big changes, always backup your virtual machine and data.
To meet the enterprise backup requirements, I'd use AOMEI Cyber Backup, the free virtual machine backup solution to create a powerful backup task for virtual machine protection. It supports VMware ESXi 6.0-7.0 and Hyper-V host 2012 and later.
With this software, you can benefit from the following features.
Reliable VMware & Hyper-V Backup: protect your virtual machines and data with flexible backup schedules.
Centralized Management: backup and manage multiple virtual machines in a central console with a few clicks.
Hot Backup: perform virtual machine hot backup and protect VM data without any disruption.
Fast Recovery: quickly restore entire VM to normal state (from any point), reduce business downtime.
Click the button below to download and enjoy the perpetual free edition:
*You can choose to install this VM backup software on either Windows or Linux system.
Easily protect your VMs for free (step-by-step)
1. Install AOMEI Cyber Backup, then add and bind your VMware or Hyper-V devices. Next, I will take VMware ESXi backup as an example.
2. Create Backup Task: click Backup Task >> Create New Task to create a secure backup task.
In Device Name, select your device and virtual machines for backup. It allows you to offer protection to multiple virtual machines simultaneously.
In Target, select local path or network path to store VM backup files.
In Schedule, set up an automatic backup plan with flexible backup strategies.
In Backup Cleanup*, specify retention policy to delete old backup files automatically, which save time and storage of virtual machine backup. This is an optional feature that you can upgrade to Premium Edition to enjoy.
With an affordable price, AOMEI Cyber Backup protects your virtual machines forever and assists your business development.
This article introduces how to add TPM module in Windows to improves the security of your computer.
Whether you are upgrading your system or changing settings, please remember: back up your data before making any big changes, which avoids serious business losses from system or human errors.