Skip to content Skip to sidebar Skip to footer

TPM is a chip usually mounted on the motherboard that securely stores passwords, digital certificates, or encryption keys that are used to authenticate a PC or laptop, so that malware can’t access or tamper with that data. If you purchased your PC after 2017, you most likely have this feature installed. However, some PCs shipped with TPM disabled by default. If this is the case, you can enable TPM in the UEFI BIOS. First you’ll need to restart your PC and enter UEFI BIOS setup. To do this, open your settings app, select ‘update & security’, then click ‘recovery’. Under ‘advanced startup’ select ‘restart now’.

Advanced Restart

Allow your PC to reboot.

From the recovery screen, click Troubleshoot.

choose troubleshoot option

Click Advanced options.

troubleshoot advanced

Click UEFI Firmware Settings.

uefi firmware settings

Click ‘restart’. Allow your PC to reboot, you’ll land on the UEFI BIOS screen.

In the BIOS, you’re looking for the settings labelled TPM, Security, Trusted Computing, Security Device, Security Device SupportTPM StateAMD fTPMAMD PSP fTPMIntel PTT, or Intel Platform Trust Technology.

Enable the appropriate feature. The exact procedure differs depending on manufacturer, so for more details check your PC manufacturer’s support website documentation or contact their tech support line. Below are links to information from some well known PC manufacturers to help you get started:

Asus PCs and Laptops

Dell PCs and Laptops

HP PCs and Laptops

Lenovo PCs and Laptops

Microsoft Surface Tablets and Laptops