+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 30 of 30
Enterprise Software Thread, TPM - I need help in Technical; I am going to cautiously say it's working. My task sequence includes: 1.png 2.png 3.png I've obviously removed the password ...
  1. #16
    clareq's Avatar
    Join Date
    Dec 2005
    Location
    Doncaster
    Posts
    732
    Thank Post
    53
    Thanked 189 Times in 125 Posts
    Rep Power
    101
    I am going to cautiously say it's working. My task sequence includes:
    1.png
    2.png
    3.png

    I've obviously removed the password we've used to take ownership. I'm now going to get a fresh machine and try and run the TS on there. The important thing is to ensure the Disable 64-bit file system redirection is ticked.

  2. 2 Thanks to clareq:

    mrbios (14th July 2014), TheScarfedOne (14th July 2014)

  3. #17
    mrbios's Avatar
    Join Date
    Jun 2007
    Location
    Stroud, Gloucestershire
    Posts
    2,541
    Thank Post
    362
    Thanked 263 Times in 215 Posts
    Rep Power
    100
    grrr none of the images are loading for me here. Just getting a black X for some reason. Images loading ok for everyone else? Even my own image i put on the last page isn't appearing for me, how bizarre

    EDIT: ok open in new window works, strange

    Excellent, will give the same settings a go here, you've got a typo on your take ownership part by the way, you've got tmp rather than tpm
    Last edited by mrbios; 14th July 2014 at 03:07 PM.

  4. Thanks to mrbios from:

    clareq (14th July 2014)

  5. #18
    clareq's Avatar
    Join Date
    Dec 2005
    Location
    Doncaster
    Posts
    732
    Thank Post
    53
    Thanked 189 Times in 125 Posts
    Rep Power
    101
    Thank you. Correcting now.

  6. #19


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,647
    Thank Post
    229
    Thanked 865 Times in 743 Posts
    Rep Power
    297
    dosent applying gpo bitlocker settings do most if not all of that for you anyway with the added advantage of storing the key in ad where you can easily find it if needed

  7. #20
    clareq's Avatar
    Join Date
    Dec 2005
    Location
    Doncaster
    Posts
    732
    Thank Post
    53
    Thanked 189 Times in 125 Posts
    Rep Power
    101
    You still need to turn on the TPM and take ownership. I have the GPO settings set, but nothing happens to a laptop in that OU unless I take these steps.

  8. #21


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,647
    Thank Post
    229
    Thanked 865 Times in 743 Posts
    Rep Power
    297
    granted you always need to turn it on but do you need to take ownership?

  9. #22
    clareq's Avatar
    Join Date
    Dec 2005
    Location
    Doncaster
    Posts
    732
    Thank Post
    53
    Thanked 189 Times in 125 Posts
    Rep Power
    101
    It seems so. Everything I've read certainly says so.

  10. #23


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,647
    Thank Post
    229
    Thanked 865 Times in 743 Posts
    Rep Power
    297
    Quote Originally Posted by clareq View Post
    It seems so. Everything I've read certainly says so.
    i know when io enabled bitlocker on my surace pro i did 0 other than turn it on and save the key to my ms account when it asked me to

  11. #24
    clareq's Avatar
    Join Date
    Dec 2005
    Location
    Doncaster
    Posts
    732
    Thank Post
    53
    Thanked 189 Times in 125 Posts
    Rep Power
    101
    Windows 8 manages bitlocker differently apparently - I know a TPM chip isn't required.

  12. #25


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,647
    Thank Post
    229
    Thanked 865 Times in 743 Posts
    Rep Power
    297
    Quote Originally Posted by clareq View Post
    Windows 8 manages bitlocker differently apparently - I know a TPM chip isn't required.
    it technically isnt on win7 you can use a pen drive and/or a pin iirc

  13. #26
    clareq's Avatar
    Join Date
    Dec 2005
    Location
    Doncaster
    Posts
    732
    Thank Post
    53
    Thanked 189 Times in 125 Posts
    Rep Power
    101
    I can confirm that the task sequence above, with the typo pointed out by Mrbios corrected, works. I'd like to thank @TheScarfedOne, who offered help in another thread, and pointed me in the right direction. 4-6 weeks of work trying to get this sorted, and I'm off for the next 3 days, so I can relax before the mad summer we have ahead.

  14. Thanks to clareq from:

    TheScarfedOne (14th July 2014)

  15. #27
    mrbios's Avatar
    Join Date
    Jun 2007
    Location
    Stroud, Gloucestershire
    Posts
    2,541
    Thank Post
    362
    Thanked 263 Times in 215 Posts
    Rep Power
    100
    Nothings working for me even running the command manage-bde -tpm -turnon within windows with the infineon software installed doesn't detect a TPM module.

    Interestingly though, the TPM chip appears in the system devices, but i thought the tpm chip would appear as it's own entity within device manager? I'm sure that's what i've seen before. I'm starting to think the TPM chip in these laptops is some cheap knockoff lol

  16. #28

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,225
    Thank Post
    874
    Thanked 2,717 Times in 2,302 Posts
    Blog Entries
    11
    Rep Power
    780
    Quote Originally Posted by mrbios View Post
    Nothings working for me even running the command manage-bde -tpm -turnon within windows with the infineon software installed doesn't detect a TPM module.

    Interestingly though, the TPM chip appears in the system devices, but i thought the tpm chip would appear as it's own entity within device manager? I'm sure that's what i've seen before. I'm starting to think the TPM chip in these laptops is some cheap knockoff lol

    Does it work just using the wizard rather than any script just to rule out an os/driver/bios mis-configuration and have you run any bios/tpm firmware updates available.

  17. #29

    SYSMAN_MK's Avatar
    Join Date
    Sep 2005
    Posts
    4,005
    Thank Post
    489
    Thanked 1,343 Times in 729 Posts
    Rep Power
    429
    Quote Originally Posted by mrbios View Post
    Nothings working for me even running the command manage-bde -tpm -turnon within windows with the infineon software installed doesn't detect a TPM module.

    Interestingly though, the TPM chip appears in the system devices, but i thought the tpm chip would appear as it's own entity within device manager? I'm sure that's what i've seen before. I'm starting to think the TPM chip in these laptops is some cheap knockoff lol
    Have you tried uninstalling the driver for the TPM under system and then let windows redetect. Had to do this on a load of Dells as Bitlocker really doesn't like 3rd party TPM driver. Once I did this it is shown as a separate item in device manager.

  18. Thanks to SYSMAN_MK from:

    mrbios (15th July 2014)

  19. #30
    mrbios's Avatar
    Join Date
    Jun 2007
    Location
    Stroud, Gloucestershire
    Posts
    2,541
    Thank Post
    362
    Thanked 263 Times in 215 Posts
    Rep Power
    100
    Quote Originally Posted by SYNACK View Post
    Does it work just using the wizard rather than any script just to rule out an os/driver/bios mis-configuration and have you run any bios/tpm firmware updates available.
    Doesn't work using the wizard either, everything just tells me a compatible TPM module wasn't found.

    No bios updates for these laptops, they're clevo chassis and the only bios updates i can find for these is on a 300+ page forum thread where I'm not even sure if the bios is official. At this rate the 10 laptops we've just bought will all be going back as they don't do what i was specifically told they would....

    Quote Originally Posted by SYSMAN_MK View Post
    Have you tried uninstalling the driver for the TPM under system and then let windows redetect. Had to do this on a load of Dells as Bitlocker really doesn't like 3rd party TPM driver. Once I did this it is shown as a separate item in device manager.
    Will give that a go now and report back
    EDIT: ok removed it and told it to delete the drivers associated with it. Restarted and it's now showing as a TPM device with a security devices section. That did the trick!

    My own stupid fault then for putting the infineon drivers in the task sequence

    My manager said you get two mars bars and go top of the class for that one haha

    EDIT2: Huzzah, all working. Fantastic stuff.
    Last edited by mrbios; 15th July 2014 at 10:27 AM.

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Need help to finsih script?
    By tosca925 in forum Scripts
    Replies: 1
    Last Post: 1st November 2006, 11:08 PM
  2. nix noob needs help
    By alan-d in forum *nix
    Replies: 15
    Last Post: 24th October 2006, 08:58 PM
  3. Replies: 3
    Last Post: 17th February 2006, 11:42 AM
  4. Group Membership Woes (Need Help)
    By ICTNUT in forum Windows
    Replies: 11
    Last Post: 2nd December 2005, 03:19 PM
  5. A Few Things I Need Help With
    By Pear in forum Windows
    Replies: 11
    Last Post: 13th October 2005, 07:42 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •