When Microsoft announced Windows 11 more than three years ago, it was immediately controversial. Not only because of its unconventional interface, but also because of its high hardware requirements, which left many systems unable to run Windows 11 properly, such as TPM and Secure Boot.
Microsoft has repeatedly explained why features like TPM (Trusted Platform Module) 2.0, VBS (Virtualization-based Security), and Secure Boot are important for Windows 11 PCs. Microsoft requires that users' PCs support these features in order to use Windows 11, because of the enhanced security benefits they provide, and has released visual demos to better explain how these features work.
Recently, with the Windows 11 24H2 feature update, Microsoft updated one of the support articles on its official website titled “Automatic Device Encryption via BitLocker”, which Microsoft calls “Auto-DE”. Notably, this document mentions why TPM and Secure Boot are required for Device Encryption.
Below is the content of the supporting document before being edited.
Why is Device Encryption not available?
Here are the steps to determine why Device Encryption might be unavailable:
1. From the Start menu, type System Information, right-click System Information in the results list, and then select Run as administrator.
2. In the System Summary - Item list, look for the value Automatic Device Encryption Support or Device Encryption Support.
- The value provides the reason why Device Encryption cannot be enabled.
- If the value shows Meets prerequisites then Device Encryption is currently available on your device.
And here is the content of the supporting document after it has been edited.
Why is Device Encryption not available?
Here are the steps to determine why Device Encryption might be unavailable:
1. From the Start menu, type System Information, right-click System Information in the results list, and then select Run as administrator.
2. In the System Summary - Item list, look for the value Automatic Device Encryption Support or Device Encryption Support.
The value describes the support status of Device Encryption:
- Meets prerequisites: Device Encryption available on your device
- TPM is not usable: Your device does not have a Trusted Platform Module (TPM), or TPM is not enabled in the BIOS or UEFI.
- WinRE is not configured: Your device does not have Windows Recovery Environment configured.
- PCR7 binding is not supported: Secure Boot is disabled in BIOS/UEFI, or you have peripherals connected to your device during boot (such as a dedicated network interface, docking station, or external graphics card)
The article basically details what those missing “prerequisites” are. They include TPM, WinRE (Windows Recovery Environment), and Secure Boot.
Additionally, Microsoft also mentioned PCR7. PCR, or Platform Configuration Register, is a memory location on the TPM that is used to store hashing algorithms. PCR profile 7, or PCR7, is what BitLocker binds to. This binding ensures that the cryptographic key, in this case the BitLocker key, is only loaded during a certain time during the boot process, not before or after.
This is where Secure Boot comes into play as it verifies and authenticates the required Microsoft Windows PCA 2011 certificate during boot, as an invalid signature will result in BitLocker using profiles other than 7.
The resurgence of interest in BitLocker and encryption on Windows 11 24H2 came about recently when the Redmond giant unexpectedly lowered the OEM requirements for Auto-DE on the latest version of Windows, so that even home PCs can be automatically encrypted. Shortly after, the company also released a handy backup and recovery guide for BitLocker keys.
Not long ago, Microsoft also reaffirmed TPM 2.0 as a non-negotiable standard on its operating systems.
Windows 11 version 21H2 is one of the major original releases of Windows 11 that began rolling out globally on October 4, 2021.
The year 2023 saw Microsoft betting heavily on artificial intelligence and its partnership with OpenAI to make Copilot a reality.
Microsoft introduced Bluetooth LE (low energy) Audio support with Windows 11 22H2 KB5026446 (build 22621.1778), also known as Moment 3, in May 2023.
After keeping things the same for years, the Sticky Note update in mid-2024 changed the game.
Today, Microsoft officially announced the general availability of Windows Server 2025 along with System Center 2025.
There's always something incredibly cool about the nostalgic user interface of 90s versions of Windows.
More than three years ago, when Microsoft announced Windows 11, the operating system immediately caused a lot of controversy.
The October 2024 report provides an overview of Windows 11's market share compared to other versions of Windows.
Microsoft is said to be getting closer to launching its first foldable smartphone when it was granted a patent for a foldable phone with the ability to fold 360 degrees but without creating wrinkles on the screen on October 1.
In a new post on its Tech Community website, Microsoft has announced plans to discontinue WSUS driver synchronization in favor of its latest cloud-based driver services.
Windows Photo Viewer was first released alongside Windows XP and has quickly become one of the most frequently used tools on Windows.
The latest previews of Windows 11 that Microsoft released this week include an improved About section in the Settings app, where users can get more information about the hardware inside their computer.
To address common issues faced by PC gamers, Microsoft has finally made the Windows operating system easier to navigate with an Xbox controller.
The April security updates for Windows 11 silently created a new empty folder on the C drive.
Microsoft has invested billions of dollars in OpenAI since 2019, although the Redmond-based software giant is by no means the primary investor in the innovative AI startup.
If you properly lock down your guest Wi-Fi network, you can share your Internet connection with any visitors without sharing any other information.
For some reason, your Windows 10 computer lost Admin rights, every time you open an application on the screen you receive an error message. So how to restore lost Admin rights, please refer to the article below of WebTech360.
In this article, WebTech360 will guide you how to turn off the firewall on Windows 11.
After a long wait, the first major update of Windows 11 has officially been released.
The Unhandled exception has occurred error is not related to a specific application, making it more difficult to resolve. This article will guide you through some ways to fix the Unhandled exception has occurred error on Windows 10.
These days, most PCs and Apple devices can handle both MOV and MP4 files, at least to some extent. However, the need to convert MOV video files to MP4 files has not diminished.
Recognizing this need, major online messaging services use a technique called end-to-end encryption, to secure and protect users' conversations.
Setting up multiple monitors on Windows is quite simple and only takes a few minutes to do. After setting up multi-monitor mode (multiple screens), you can set up separate wallpapers for each screen. To do this, please refer to the article below from WebTech360.
Hidden deep within Windows is a world of command lines that few people know about. In this article, we will guide you on how to fix errors and make your computer more secure using the cmd command line tool.
Instructions on how to enter BIOS on Windows 10 for you, with video illustration.
Clipchamp is the default video editor on Windows 11, but if you just need to make a quick cut, split a simple photo, or add music to a clip, the classic editor inside the Photos Legacy app is a much better choice.
Save images from the login screen, download Windows 10 lock screen images to keep the images you like or set them as your computer wallpaper. Here is the most detailed way to download images from Windows Spotlight for you.
Windows 11 has a feature that adds an End Task button directly on the Taskbar, so you don't have to access Task Manager to close unresponsive applications.
This article will guide you through the ways to enable Bluetooth on Windows 11 to connect to wireless accessories with just a few simple steps.
Sometimes, you just can't find an external hard drive when you need it most. After losing important files a few times, some people have found a simple and reliable way to back up everything, even when the hard drive is unavailable.
