I am going to cautiously say it's working. My task sequence includes:
I've obviously removed the password we've used to take ownership. I'm now going to get a fresh machine and try and run the TS on there. The important thing is to ensure the Disable 64-bit file system redirection is ticked.
grrr none of the images are loading for me here. Just getting a black X for some reason. Images loading ok for everyone else? Even my own image i put on the last page isn't appearing for me, how bizarre
EDIT: ok open in new window works, strange
Excellent, will give the same settings a go here, you've got a typo on your take ownership part by the way, you've got tmp rather than tpm
Last edited by mrbios; 14th July 2014 at 03:07 PM.
clareq (14th July 2014)
Thank you. Correcting now.
dosent applying gpo bitlocker settings do most if not all of that for you anyway with the added advantage of storing the key in ad where you can easily find it if needed
You still need to turn on the TPM and take ownership. I have the GPO settings set, but nothing happens to a laptop in that OU unless I take these steps.
granted you always need to turn it on but do you need to take ownership?
It seems so. Everything I've read certainly says so.
Windows 8 manages bitlocker differently apparently - I know a TPM chip isn't required.
I can confirm that the task sequence above, with the typo pointed out by Mrbios corrected, works. I'd like to thank @TheScarfedOne, who offered help in another thread, and pointed me in the right direction. 4-6 weeks of work trying to get this sorted, and I'm off for the next 3 days, so I can relax before the mad summer we have ahead.
TheScarfedOne (14th July 2014)
Nothings working for me even running the command manage-bde -tpm -turnon within windows with the infineon software installed doesn't detect a TPM module.
Interestingly though, the TPM chip appears in the system devices, but i thought the tpm chip would appear as it's own entity within device manager? I'm sure that's what i've seen before. I'm starting to think the TPM chip in these laptops is some cheap knockoff lol
mrbios (15th July 2014)
No bios updates for these laptops, they're clevo chassis and the only bios updates i can find for these is on a 300+ page forum thread where I'm not even sure if the bios is official. At this rate the 10 laptops we've just bought will all be going back as they don't do what i was specifically told they would....
EDIT: ok removed it and told it to delete the drivers associated with it. Restarted and it's now showing as a TPM device with a security devices section. That did the trick!
My own stupid fault then for putting the infineon drivers in the task sequence
My manager said you get two mars bars and go top of the class for that one haha
EDIT2: Huzzah, all working. Fantastic stuff.
Last edited by mrbios; 15th July 2014 at 10:27 AM.
There are currently 1 users browsing this thread. (0 members and 1 guests)