SOLVED! Should I Clear TPM During Reset

Despite its simplicity, reset can solve quite a few software-related issues on Windows computers. Noteworthily, during reset, Windows may prompt people to clear Trusted Platform Module (TPM) but they also warn that the action would delete all TPM data. Needles to say, ”should I clear TPM during reset?” is one of the questions that trouble non-tech savvy Windows users. If you have a hard time deciding what to do, you have come to the right place. 

An Analysis Of TPM 

In case you don’t know, modern computers usually have a Trusted Platform Module (TPM) added to the CPU or integrated into the motherboard. In essence, TPM is a dedicated microchip that protects your computer’s hardware through encryption keys and provides other security-related features. In use, TPM communicates with other parts of the system through a hardware bus.

While resetting, your computer could offer to clear TPM and two options appear: clear TPM (press F12) or don’t clear TPM (press Esc). If you opt to clear TPM, all TPM data including created keys and data encrypted by those keys should be deleted. Depending on the situation, it’s wise to clear TPM, especially if you want to deploy TPM-based functionalities as you install new OS on used computers. Aside from that, if you use BitLocker to encrypt keys, you should clear TPM before disposing of your computer to prevent others from recovering them

All in all, ”should I clear TPM during reset?” is a question that you can only answer if you consider the importance of TPM data and the existence of backups.

How To Clear Trusted Platform Module (TPM)

Prompt (During Reset)

When your PC prompts you to clear TPM during reset, it usually provides you with two options: F12 and Esc. As you see the options, hit F12 to clear TPM and let the system handle the rest.

Windows Security 

  • Step 1: Navigate to Search bar, type Windows Security and hit Enter
  • Step 2: Go to to Device security > Security processor > Security processor details > Security processor troubleshooting > Clear TPM
  • Step 3: Choose Clear then wait as the computer restart 

TPM Management

  • Step 1: Navigate to Search bar, type tpm.msc, and hit Enter
  • Step 2: Go to to Actions > Clear TPM > Restart
  • Step 3: Allow the PC to restart and follow onscreen instructions 

BIOS 

  • Step 1: Restart your computer and enter BIOS mode by pressing F2 
  • Step 2: Navigate to Security > TPM Security, check the Clear checkbox, choose Apply and exit
  • Step 3: Enter BIOS again then ensure that the Enabled circle in TPM is ticked and choose Apply 
  • Step 4: Restart the computer

PowerShell (Admin) 

  • Step 1: Navigate to Search bar, type PowerShell, right-click the top entry and choose Run as administrator. 
  • Step 2: Type the command Clear-TPM then run it 
  • Step 3: Close PowerShell once the process wraps up

Frequently Asked Questions

What must be done to check if my PC has a TPM 2.0 chip?

  • Step 1: Press Windows + R to launch Run 
  • Step 2: Enter tpm.msc then select OK
  • Step 3: Check the details on TPM Management on Local Computer to see if your PC has TPM 2.0 chip

How do I enable TPM 2.0 on Windows 11?

  • Step 1: Press Windows + I to open Settings 
  • Step 2: Navigate to Update and Security > Recovery > Advanced startup > Restart Now 
  • Step 3: Select Troubleshoot > Advanced Options >UEFI Firmware Settings and pick Restart
  • Step 4: Go to Security Settings > TPM Configuration > Enable
  • Step 5: Exit Settings then restart PC

What’s the difference between TPM 2.0 and TPM 1.2

TPM 2.0 is the latest Trusted Platform Module Technology and comes with more support, extra encryption, and stronger security. Launched in 2011, TPM 2.0 proves superior to TPM 1.2 regarding the algorithms to enhance key generation and drive signing performance. Furthermore, TPM 2.0 is more flexible in terms of encryption algorithms than the TPM 1.2 which only supports SHA-1 and RSA algorithms.

Is it possible to bypass TPM on Windows 11?

  • Step 1: Navigate to Search bar, type run and hit Enter
  • Step 2: In Run, type Regedit and hit Enter to open Registry Editor
  • Step 3: Navigate to Computer > HKEY_LOCAL_MACHINE > System > Setup
  • Step 4: Right-click anywhere in the window, choose New and select Key
  • Step 5: Rename the new Registry Key file folder as LabConfig
  • Step 5: On the LabConfig folder, go to the Default file and create a new DWORD registry file 
  • Step 6: Right-click anywhere inside the LabConfig file and navigate to New > DWORD (32-bit) Value
  • Step 7: Rename the file to BypassTPMCheck and 
  • Step 8: Create a new DWORD registry file using the name BypassSecureBootCheck
  • Step 9: Double-click BypassTPMCheck, change the value data from 0 to 1 and hit OK
  • Step 10: Double-click BypassSecureBootCheck, change the value data from 0 to 1 and hit OK

After you finish, exit Registry Editor and restart the PC

How should I use a Trusted Platform Module (TPM)?

The most fundamental function of a TPM is creating a login password for your PC. The TPM chip allows users to create and manage cryptographic keys for locking specific files or their PC. A Trusted Platform Module can also be used to enable BitLocker’s Drive Encryption Utility. It is a useful place to store sensitive data such as fingerprint records and enables smart-card readers for user login and authentication.

Tips And Tricks

  • Keep Windows up-to-date
  • Back up data before clearing TPM
  • Keep your PC updated
  • Clear TPM before disposing of your laptop/computer
  • Keep TPM drivers up-to-date

Leave a Comment