Trusted Platform Module, or TPM, is a secure crypto-processor that secures a computer via an integrated cryptographic key. Windows machines have this technology to provide enhanced security features and it is required to have TPM 2.0 chip present on the machine to support the Bitlocker Encryption for Windows 10 and above OS machines.
There are 3 ways to verify the TPM version by:
- Using the TPM Management console
- Executing a command in command prompt
- Using the Device manager
- To verify using the TPM Management console, follow below steps:
- Open run(Win+R) command and type in tpm.msc.
- It will show the TPM management console with the version listed under Specification version(as shown below):
2. To verify the version using the command, launch cmd prompt as administrator and execute below command:
wmic /namespace:\\root\cimv2\security\microsofttpm path win32_tpm get * /format:textvaluelist.xsl
NOTE: This will show the TPM version under SpecVersion.
3. To verify using the Device Manager, follow below steps:
- Open run command and type in devmgmt.msc
- Hit enter to launch the Device Manager
- In Device Manager, expand the option Security devices and check the TPM version (see image below):
If the TPM version on any of the above methods shows 2.0, the same Windows device will be compatible to support the BitLocker encryption.
To configure and enable BitLocker on Windows devices remotely through SureMDM, please follow the steps mentioned in this link.