How to activate TPM 2.0 to get your PC ready for Windows 11



[ad_1]

The official release of Windows 11 is just around the corner – it launches on October 5 – and it will bring with it a new look and lots of new gaming features. Most of the system requirements are pretty straightforward on modern systems, except one: TPM 2.0 . Many computers have it, but others either don’t or have the previous standard, TPM 1.0. Below we explain what it is, what it does for your computer, how to tell if you have it, and how to activate it if you have it.

What is TPM and why do I need or want it?

TPM stands for Trusted Platform Module. It is a secure cryptoprocessor that lives on your motherboard or in your processors. It uses hardware-level encryption to protect your device and the data stored on it by protecting the encryption keys generated by your computer. It is a physical device that cannot be changed through software, which Windows can use to ensure that your data is secure and remains intact.

TPM makes sure that your encrypted drive stays encrypted, that malware cannot access the fingerprint information you have stored on your laptop, and things like that. Although Windows 11 requires it, it is also present in Windows 10 and even Windows 7. In addition to the operating system itself that uses it, applications such as browsers, antiviruses and email clients can also use TPM.

How to tell if you have TPM

There are two easy ways to check directly from Windows whether TPM 2.0 is enabled or not.

Checking PC Status

Head to your Start menu and type in “PC Health Check”. There should be an application by that name that you can start, which you can use to see if your PC is ready for Windows 11.

No legend provided

If you get the dreaded red X, click on the results to see what is missing; the app only gave a simple yes or no right after Microsoft announced Windows 11, but the company has since stepped up the feedback so you know what requirements aren’t being met, whether it’s Secure Boot, TPM 2.0, your processor, your RAM or your hard drive. space out.

Device Security Menu

If you are sure that you meet all other system requirements, you can open the Windows Security menu. Just like with the Health Check, click Start and type Windows Security. In this menu, click Device Security in the left menu.

No legend provided

You will see a bullet icon there, with a very, very small green check mark if you already meet the TPM requirements. You can click Security Chip Details for more information.

If you’ve bought a pre-built laptop or computer (Dell, Asus, etc.) between 2016 and now, you’re almost certainly ready. Microsoft requires that TPM be enabled on all computers sold since then. Those of us who built our computers are the ones who will have to dig a little deeper.

Despite all the dismay around this requirement, TPM in general and TPM 2.0 are very common. If you have a working computer with a BitLocker encrypted drive, for example, you have TPM. Microsoft has an official list of officially supported processors for AMD and Intel. The list goes back to three generations for both, including 8th gen Intel processors and AMD Ryzen 2000 series processors, and all will support TPM 2.0 in one way or another.

Why does Windows 11 require TPM 2.0?

So why is Microsoft going so hard on TPM 2.0? In short, having a TPM 2.0 compatible computer and a system designed for it like Windows 11 raises the security bar across the board on your PC. Connecting and encrypting your drive just got easier.

But more importantly, TPM 2.0 can help guard against some of the nastiest malware, rootkits. Some rootkits load before your operating system even loads, giving those in control of it access to infect just about any aspect of your operating system or applications. With cybersecurity becoming more and more important, Microsoft seems to be interested in raising the security profile of its operating system for everyone who uses it rather than waiting to ensure that absolutely everyone can get on board.

How to activate the TPM

If you built your computer yourself, there are two options. Most of the processors listed above have TPM 2.0 functionality built into the processor firmware, and you only need to enable it in BIOS / UEFI. For that, you’ll just want to research your motherboard instructions. On my MSI motherboard, for example, it’s as simple as this:

  1. Start in the configuration menu
  2. Go to the Trusted Computing menu under the Security section
  3. Activate “AMD CPU fTPM”

Many motherboard manufacturers now have pages dealing specifically with how to enable this on supported cards. If your chip does not have a TMP built into its firmware, you may need to add a piece of hardware to your system. If this is the case, your motherboard manual will indicate where on the board you will plug this chip. TMP 2.0 modules are available from sites like Amazon and Newegg for under $ 50.

What if I cannot activate TPM?

While people are constantly finding hacks to get unreleased Windows 11 to work on computers without TPM 2.0, it is important to keep in mind that this is not how Microsoft intends to make the system work. operating. This means that you may not be able to get the updates, that the updates may not work properly, or that some aspect of the operating system will behave strangely. Security is not guaranteed, of course, cybersecurity is an arms race between hackers and security specialists. But it greatly improves your chances.

The good thing is that Windows 10 still works fine and is a great operating system. Microsoft plans to continue supporting the operating system until 2025, giving you plenty of time to upgrade if necessary. Chances are, if you don’t have access to TPM 2.0, you are using an older system; as apps and games start to make better use of modern hardware – using multiple cores, built with DirectStorage in mind (currently Windows 10 supports it, but as it evolves it can change), and things like that – this system will start to feel more and more overwhelmed, and this upgrade will become a necessity.

[ad_2]

Source link