locked
Bitlocker Encryption without TPM RRS feed

  • Question

  • I have a laptop running Ultimate 7 with Bitlocker installed and I use a flash drive encryption key to boot up. My company now wants me to add a pin to the process, but the laptop does NOT have TPM. My understanding is that as a result of not having TPM, that I cannot add the pin to the process. I need something in writing to prove  to my company that it can't be done. Any help would be appreciated.
    • Moved by Mike Kinsman Tuesday, June 23, 2015 4:37 PM off topic
    Thursday, June 18, 2015 9:57 PM

Answers

  • Hi,

    Yes you're right, it's not possible to use PIN without TPM.

    You can show them this Microsoft page ; https://technet.microsoft.com/en-us/library/ee449438%28v=ws.10%29.aspx#BKMK_NoTPM

    Check this part :

    BitLocker hardware and software requirements

    Hardware TPM : TPM version 1.2

    A TPM is not required for BitLocker; however, only a computer with a TPM can provide the additional security of pre-startup system integrity verification and multifactor authentication.

    You can also show them the GPO ! :

    Julien

    • Proposed as answer by Julien DECORMON Friday, June 19, 2015 9:35 PM
    • Marked as answer by Just Karl Tuesday, June 30, 2015 10:30 PM
    Thursday, June 18, 2015 10:46 PM

All replies

  • Hi,

    Yes you're right, it's not possible to use PIN without TPM.

    You can show them this Microsoft page ; https://technet.microsoft.com/en-us/library/ee449438%28v=ws.10%29.aspx#BKMK_NoTPM

    Check this part :

    BitLocker hardware and software requirements

    Hardware TPM : TPM version 1.2

    A TPM is not required for BitLocker; however, only a computer with a TPM can provide the additional security of pre-startup system integrity verification and multifactor authentication.

    You can also show them the GPO ! :

    Julien

    • Proposed as answer by Julien DECORMON Friday, June 19, 2015 9:35 PM
    • Marked as answer by Just Karl Tuesday, June 30, 2015 10:30 PM
    Thursday, June 18, 2015 10:46 PM
  • Unfortunately your post is off topic here, in the TechNet Site Feedback forum, because it is not Feedback about the TechNet Website or Subscription.  This is only one forum among the many that are on the TechNet Discussion Forums, and given your post, you likely chose the wrong forum.  This is a standard response I’ve written up in advance to help many people (thousands, really.) who post their question in this forum in error, but please don’t ignore it.  The links I share below I’ve collected to help you get right where you need to go with your issue.

    For technical issues with Microsoft products that you would run into as an end user of those products, one great source of info and help is http://answers.microsoft.com, which has sections for Windows, Hotmail, Office, IE, and other products. Office related forums are also here: http://office.microsoft.com/en-us/support/contact-us-FX103894077.aspx

    For Technical issues with Microsoft products that you might have as an IT professional (like technical installation issues, or other IT issues), you should head to the TechNet Discussion forums at http://social.technet.microsoft.com/forums/en-us, and search for your product name.

    For issues with products you might have as a Developer (like how to talk to APIs, what version of software do what, or other developer issues), you should head to the MSDN discussion forums at http://social.msdn.microsoft.com/forums/en-us, and search for your product or issue.

    If you’re asking a question particularly about one of the Microsoft Dynamics products, a great place to start is here: http://community.dynamics.com/

    If you really think your issue is related to the subscription or the TechNet Website, and I screwed up, I apologize!  Please repost your question to the discussion forum and include much more detail about your problem, that could include screenshots of the issue (do not include subscription information or product keys in your screenshots!), and/or links to the problem you’re seeing. 

    If you really had no idea where to post this question but you still posted it here, you still shouldn’t have because we have a forum just for you!  It’s called the Where is the forum for…? forum and it’s here: http://social.msdn.microsoft.com/forums/en-us/whatforum/

    Moving to off topic. 

    Thanks


    MSDN and TechNet Subscriptions Support

    Did Microsoft call you out of the blue about your computer? No, they didn't.

    Tuesday, June 23, 2015 4:37 PM