@@TechsavvyProductions I think it's honestly an awesome security feature and Honestly it makes me eagerly awaiting Windows 11. I am obviously interested in Security for a number of reasons, I now run a business where I buy things and resell them higher but it took busiess licenses to be able to work with various wholesalers but on top of ot that I spent my Teenager years technically speaking black hat and somewhat on the wrong side of the law although nothing I did was too terrible it was mostly just breaking into HOST accounts on AOL and using them to gag people. Our cat and mouse games with AOL are part of why the Secure ID System that eventually became 2 factor authenication emerged. and of course a lot of the programmers I hung around were playing around with Trojan horses and now of course Rootkits are a thing. So I'm WELL Aware of threats especially since I used to be one of the people who took advantage of this stuff! Now that I've turned and am on the legal side of the market of course I'm scared my stuff will be stolen by someone who's intentions are a lot worse than temporary gags! I'm glad I LEARNED by trial by fire myself because now personally I have no need of a virus scanner because Li ole me download a virus? Haha.. that's a comedy. but yeah I've seen the dark side go from grey questionable stuff to black holy shit as a person with somewhat mischevious intentions in the past I STILL cannot approve. Like Ransomware hits on Hospitals.... ugh... So needless to say my Personal opinion as a Fellow Tech geek is the USA is a sitting duck and it remains open season because our government has overkill capacity as far as tech industrial sabotage like they did with Irans nuclear facilities, but Honestly? Our Cyber security culture is practically nonexistent, which has me concerned. we can hit back-and hard but we are sitting ducks, very glass cannonesque. and of course our leaders are still "The internet is a series of tubes" -nothing has changed with our senators. They're elected by people who don't know what they're doing so t hey don't either.
Kythra the suntamer: your observation of our security landscape is understood by government cybersecurity professionals, security companies and anyone educated on this topic. The solutions if it were simple, steps would have been taken to fix the problem, but it is complex. We live in a democracy so unlike China (who builds the great firewall) we will be more open to abuse from hacking. There is intense discussion about this problem and no easy answer. How do you deal with millions of users who still are easily tricked by a simple email? Microsoft, Linux and many other very smart folks are working on solutions to make it harder but with nation-states and their limitless budgets and resources of well training attackers and criminal gangs well funded from their trade it is a tough environment.
@@TechsavvyProductions The only practical advice I would have as a security student is don't give end users who don't know about social engineering and to not fall for every email and download and run every attachment someone sends to them access to anything that matters.
@@TechsavvyProductions I also updated the machine to windows 11. However I do have a tough question that maybe you could help me with. A clean install of 10 was upgraded to 11 using this module on an MSI Z390 Gaming Pro Carbon motherboard (i7 9700k). I’ve noticed that the path for windows defender is invalid when attempting to open the tray application for windows defender. I am good with computers but not quite that good at wrenching deep within the operating system.
Galaxie, Open settings and click on Privacy and security and then Windows Security and verify Windows Defender is OK, click on each of the "protection areas" and verify no errors. If everything works fine and you have green check marks by all the functions I would not worry about it.
@@TechsavvyProductions Yep it works just fine and everything looks to be in order! Just a simple bug in the beta version of 11 from a clean windows 10 upgrade is what it's looking like since that is what I did.
Most of you will have a CPU with what Intel calls its firmware-based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), you may have to enable it in your BIOS
@@TechsavvyProductions Yeah but from what I looked up, W11 doesn't support many processors that aren't that old, according to Microsoft's own support list. For example, my i5-4690K according to them won't run it. Yeah, it's 7 years old at this point but it's still pretty good and runs W10 well. On the AMD side, first gen Ryzen chips are not supported and they're not even 4 years old yet. I get they want this OS to be secure with newer hardware that probably has hardware security functions and W11 isn't out yet so maybe they'll find a way to add support but I can see a lot of people just sticking with Windows 10. I don't know. We'll see.
Can't wait for this to be used for DRM. Say hello to audio files that are locked only to a specific computer and locked to a specific "secure" music playing program. Hell, they may just charge you a renting fee or else they invalidate your files. The future is amazing.
@@TechsavvyProductions Yet. Once every device is forced to have the 2.0 chip (which is what Microsoft is aggressively pushing for), we will see it used that way. I don't care what they say. As long as it is possible to use it for DRM, it only becomes a matter of when it will be used for DRM.
TPMs existed for a decade and hardly saw any use for the end consumer until Windows 11. However, every article shilling for TPM mentioned how it can be used for DRM and surveillance.
@@TechsavvyProductionsindeed of course it was an indepth exploitation on the TPM. However, my interest of understanding on the matter of TPM might be off. I was thinking the TPM security scenario would be something that prevented your system from getting hacked into thru internet measures and such. What say ye..?
TPM can secure your boot files from hacking if you turn on "Secure Boot" , it can hide your BitLocker keys if you decide to encrypt you hard drive. It can save and protect your log on credentials if you use Windows Hello. It is an important part of your security if you enable these features.
Most of you will have a CPU with what Intel calls its firmware-based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), you may have to enable it in your BIOS
I am trying to restore an entire machine backup downloaded to an external hard drive from iDrive, using a bootable thumb drive that accesses idrive restore software. From there I am supposed to choose the backup file from the external hard drive and then select my laptop's hard drive to restore to. The issue is that the laptop's hard drive doesn't appear as an option to restore to. It is listed as X: drive as an option to select the backup file from, but not as an option to restore to. Is this due to TPM? Disabling secure boot didn't help. iDrive tech support says my laptop's hard drive is bad, but my laptop is less than a year old, and all diagnostics says it's hard drive is fine.
Test the HD with Seagate Seatools HD diagnostic, if it shows a healthy disk then assume it is fine. TPM should not interfere with this process. If the disk is fine, use "diskpart.exe" to clean the drive and try the restore again.
@@TechsavvyProductions Oops! I must have asked this question on a few of your videos. I diagnosed my HD with HD sentinal and it ranked 100% excellent. I will try the diskpart.exe clean up and see if that works. Thank you so much for your suggestion.
@@TechsavvyProductions Hhmmm. Is it safe to say that it's based from TPM technology Sir? Thank you for the response. I'm learning a lot from your videos Sir.
Great detailed video. When I ran the Windows 11 compatibility check, it mentioned TPM. I thought "What is TPM?" Thanks for helping out with that question. I had to enable this in my BIOS on my Asus Z390 Chipset motherboard. Looks like it was disabled by default.
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
My motherboard is an Asus Z97-Deluxe, it has a connector for the TPM-L R2.0 (20-1) module, but it is 20-pin, but this module no longer exists or I can't get it, there will be some way to adapt a 14-pin TPM-M R2.0 (14-1) module?
Juan only if the manufacture says that can work. I would have to dig in the support section and see, my guess is no. But with Windows 11 coming it would be worth researching.
well lets say your motherboards comes without TPM but CPU from 2018 upwards will have TPM as standard, does that protect all of the hardware within the same system or just CPU?
Hardware TPMs or CPU-based TPMs allow operating systems to validate boot files as "untampered". Applications and operating systems can use TPM to store secrets in hardened methods. Enterprise is moving to use TPM to validate the entire operating system as valid and not tampered. I hope that answers your question.
One big consideration many might have is...if TPM is enabled and secure boot too, can you still image an OS on the boot drive/SSD and restore it later and can you move that same SSD from one motherboard to another when you might upgrade or replace a motherboard? Or, if you buy a larger SSD, can you still restore the previous OS from the previous SSD to the new larger SSD? I'm thinking no if there are security keys that might be looking for the same motherboard and/or SSD hardware id's.
Great questions: If you have TPM and Secure boot enabled on your present OS and want to reinstall or image. 1. Force BIOS to default; this clears all the data in your TPM. 2. Disable Secure boot so you can reimage the PC. After all, is right with the world, and your computer appears stable; enable TPM and Secure boot. This would address a new HD or a reinstall. 3. For the cloning (reimage) of an existing HD to a larger one, if you use clone software, follow steps 1 & 2; you should not have any issues. 4, If you have Bitlocker kb.acronis.com/content/56619
Garth, we will see. The SolarWinds breach was a major compromise not only for the government but for Windows, Microsoft concedes that they access to source code for Windows. The only way to protect PCs from future tampering is having a TPM and Secure Boot. I do not think Microsoft has a choice, this hints at the seriousness of the SolarWinds breach. There will be all kinds of work-arounds so most folks will have Windows 11, but major enterprise and governments will be moving to new hardware.
@@TechsavvyProductions Seems fair for the big corps and big tech...they really shouldn't have old hardware in operation when they are holding secured data.
TPM 1.2 debuted in 2012 and TPM 2.0 premiered in 2014 If I remember correctly. Bypassing it for the initial install is possible by hacking the ISO. There are videos on how to do it. But here is the catch and it's a doozy: Microsoft will link the TPM to the Microsoft Store for the purposes of software license enforcement. i.e. software may use the computer's unique TPM and a Microsoft Account for Product Activation to validate any software you try to install. They could go as far as to validate every time you start an app or a windows component like edge. This could also prevent Firefox and Chrome from installing as well. Without being able to activate a browser you have no internet access. So, bypassing it for install may still leave you with a system that can't run anything including edge and any apps you also will not be able to install any software. You would be effectively locked out of the App Store. They may also tie it to windows activation leaving you with a machine that boots to windows that cannot run anything at all whatsoever. It is not clear how far they are planning to go in terms of utilizing TPM and Windows activation. These are likely scenarios being discussed by several well-informed groups on the internet.
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
@@TechsavvyProductions That article also missed the requirement that laptops must have powered functional webcams or else Windows 11 will not boot. That article is out of date and needs a correction.
@@TechsavvyProductions TPM 1.2 debuted in 2014 and TPM 2.0 premiered in 2018 If I remember correctly. Bypassing it for the initial install is possible by hacking the ISO. There are videos on how to do it. But here is the catch and it's a doozy: Microsoft will link the TPM to the Microsoft Store for the purposes of software license enforcement. i.e. software may use the computer's unique TPM and a Microsoft Account for Product Activation to validate any software you try to install. They could go as far as to validate every time you start an app or a windows component like edge. This could also prevent Firefox and Chrome from installing as well. Without being able to activate a browser you have no internet access. So, bypassing it for install may still leave you with a system that can't run anything including edge and any apps you also will not be able to install any software. You would be effectively locked out of the App Store. They may also tie it to windows activation leaving you with a machine that boots to windows that cannot run anything at all whatsoever. It is not clear how far they are planning to go in terms of utilizing TPM and Windows activation. These are likely scenarios being discussed by several well-informed groups on the internet
Hello dude Is Asus h81m-cs motherboard supports TPM 2.0 or not? Can I am able to upgrade from Windows 10 to windows 11 on Asus H81M-CS motherboard or not?
Start by downloading your motherboard manual, they are free downloads. Most Intel and AMD support the following: Intel calls its firmware based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), check out your CPU and see.
@@TechsavvyProductions thanks dude I have Asus h81M -CS motherboard and intel core i5 4670 processor. Is my pc able to get windows 11 update with this motherboard and processor combination ?
How would this effect me trying to replace windows with Ubuntu? Last time I tried to live boot something other than windows, it freaked out and locked my hard drive. Luckily I had the bitlocker key and was able to get it open again. If I were to attemt to install Ubuntu and completely erase Windows, would the tpm freak out and turn my laptop into a paper weight?
You can unencrypt your HD then watch the video on Windows 10 and TPM : ua-cam.com/video/PLef73R3OpY/v-deo.html It will explain how to clear your TPM and then install Ubuntu. You should be fine.
Your motherboard H170 chip supports: Intel® Platform Trust Technology (Intel® PTT) Intel® Platform Trust Technology (Intel® PTT) is a platform functionality for credential storage and key management used by Windows 8* and Windows® 10. Intel® PTT supports BitLocker* for hard drive encryption and supports all Microsoft requirements for firmware Trusted Platform Module (fTPM) 2.0. Thanks for watching. You can enable it in the firmware.
Basically (in general) if I have an encrypted SSD installed in a motherboard with TPM, and I move the drive in another system (with another TPM chip), that drive will not be usable even if I have the password. Correct ? And will I be able to use the encrypted drive if I also move the TPM chip ? (the TPM types that plug in motherboards). Thanks.
Some SSDs have their encryption and do not use the motherboard TPM, and if that is the case, then the SSD is independent of the motherboard. If you used Bitlocker, then yes, your motherboard TPM will be used, and you should have been prompted to print or save a recovery key. That key can be used on a new motherboard to decrypt the drive. I hope that helps.
Windows Bitlocker uses TPM to store a key, but it ALSO has a backup key in case you need to move to a new computer. But without the key it's locked to that laptop.
hi man i have msi b550 gaming edge wifi and i upgraded w11 2 days ago and i enter bios to enable tpm but i pressed enroll all delete factory keys by accident and now i cant access my bios i check it and tpm says false but i should have tpm anyway i guess its broken and how can i repair it pls help me i cant play game i cant access my bios i cant format my pc
Because your TPM security hardware is a physical part of your computer, you might want to read the MSI motherboard manual or search the manufacturer's website. MSI should have a step by step on how to restore your motherboard security keys. You might also reach out to MSI tech support.
Most of you will have a CPU with what Intel calls its firmware-based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), you may have to enable it in your BIOS
@@TechsavvyProductions I don't know anything about computers. I just bought it from Walmart four months ago. I don't do anything with it much. It has windows 10. I came home 3 days ago and.this message waa on the screen. I turn it off and when I turn it back on the message is still there.
I briefly looked at forums and saw some folks having troubles with BitLocker and SSDs, or SSDs with built-in encryption, some of these folks were contributing it to TPM. SSDs are the standard for most devices today. I feel confident that there are very few issues with having an SSD and using TPM. I run SSDs and TPM on all my Windows devices.
Sorry about that, you can enable secure boot in your firmware, enable BitLocker for drive encryption and enable Windows Hello for a PIN logon, all of those features will take advantage of your TPM. ua-cam.com/video/W16Xm1QWZIY/v-deo.html
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
I think you're missing the point, TPM is designed not to prevent anyone from booting a PC but to prevent someone (a threat actor from changing a boot file or modify the boot process without your knowing). If the boot process is tampered with, then intervention will be required alerting you something has changed. In your example: The police will boot the PC with or without the TPM.
I always wonder what that tpm header does on my motherboard Wow ryzen Pro has it built in nice I have b350 does it have built in oh wait no it has that header So what it is it helps so i dont get hacked
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
@@TechsavvyProductions yeah, thankfully my 3 years old PC and my 5 years old HP laptop have TPM available. BTW your videos should go viral in the upcoming weeks.
Zero Zero Sambungkan dengan 1 saya dan alat komputer saya akan bekerja Siapa yang paling data tanpa izin akan diketahui oleh Google Map kepolisian Google akan siap melaporkan ke pusat satelit seluruh benua Google Map akan bekerja Siapa yang paling data akan ikan kakap tanpa izin Halo data seluruh data Google Map yang penjaga Siapa yang mau maling data langsung otomatis ke no blog otomatis dan datanya akan dikunci dan dikirimkan dengan satelit akan dipampangkan di depan seluruh dunia kirimkan dan Sambungkan dengan satelitnya Zero Zero Zero Zero kirimkan dan kunci antivirus bekerja Google Map menjaga kirim
Most of you will have a CPU with what Intel calls its firmware-based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), you may have to enable it in your BIOS
Thank you, with Windows 11 requiring TPM 2.0 compatibility I am just now learning about this.
Thank you for watching!
@@TechsavvyProductions I think it's honestly an awesome security feature and Honestly it makes me eagerly awaiting Windows 11. I am obviously interested in Security for a number of reasons, I now run a business where I buy things and resell them higher but it took busiess licenses to be able to work with various wholesalers but on top of ot that I spent my Teenager years technically speaking black hat and somewhat on the wrong side of the law although nothing I did was too terrible it was mostly just breaking into HOST accounts on AOL and using them to gag people. Our cat and mouse games with AOL are part of why the Secure ID System that eventually became 2 factor authenication emerged. and of course a lot of the programmers I hung around were playing around with Trojan horses and now of course Rootkits are a thing. So I'm WELL Aware of threats especially since I used to be one of the people who took advantage of this stuff! Now that I've turned and am on the legal side of the market of course I'm scared my stuff will be stolen by someone who's intentions are a lot worse than temporary gags! I'm glad I LEARNED by trial by fire myself because now personally I have no need of a virus scanner because Li ole me download a virus? Haha.. that's a comedy. but yeah I've seen the dark side go from grey questionable stuff to black holy shit as a person with somewhat mischevious intentions in the past I STILL cannot approve. Like Ransomware hits on Hospitals.... ugh...
So needless to say my Personal opinion as a Fellow Tech geek is the USA is a sitting duck and it remains open season because our government has overkill capacity as far as tech industrial sabotage like they did with Irans nuclear facilities, but Honestly? Our Cyber security culture is practically nonexistent, which has me concerned. we can hit back-and hard but we are sitting ducks, very glass cannonesque.
and of course our leaders are still "The internet is a series of tubes" -nothing has changed with our senators. They're elected by people who don't know what they're doing so t hey don't either.
Kythra the suntamer: your observation of our security landscape is understood by government cybersecurity professionals, security companies and anyone educated on this topic. The solutions if it were simple, steps would have been taken to fix the problem, but it is complex. We live in a democracy so unlike China (who builds the great firewall) we will be more open to abuse from hacking. There is intense discussion about this problem and no easy answer. How do you deal with millions of users who still are easily tricked by a simple email? Microsoft, Linux and many other very smart folks are working on solutions to make it harder but with nation-states and their limitless budgets and resources of well training attackers and criminal gangs well funded from their trade it is a tough environment.
@@TechsavvyProductions The only practical advice I would have as a security student is don't give end users who don't know about social engineering and to not fall for every email and download and run every attachment someone sends to them access to anything that matters.
thank you Lowell ,for providing accurate and helpful Tech explanations and lessons
Glad it was helpful!
I installed one of these into my server to stop exploits. Thank you so much!
It is part of your layered approach to defensive security.
@@TechsavvyProductions I also updated the machine to windows 11. However I do have a tough question that maybe you could help me with. A clean install of 10 was upgraded to 11 using this module on an MSI Z390 Gaming Pro Carbon motherboard (i7 9700k). I’ve noticed that the path for windows defender is invalid when attempting to open the tray application for windows defender. I am good with computers but not quite that good at wrenching deep within the operating system.
Galaxie, Open settings and click on Privacy and security and then Windows Security and verify Windows Defender is OK, click on each of the "protection areas" and verify no errors. If everything works fine and you have green check marks by all the functions I would not worry about it.
@@TechsavvyProductions Yep it works just fine and everything looks to be in order! Just a simple bug in the beta version of 11 from a clean windows 10 upgrade is what it's looking like since that is what I did.
Thanks for the explanation, solved many doubts in addition to providing a broader view on TPM technology.
Thanks for watching
WOW!! This video was amazing and extremely helpful in understanding TPM. Watching this in preparation for the CISSP!
Thanks for sharing!
Very thorough explanation. Engaging too.
Thank you for the feedback!
Thansk Lowell Vanderpool for the explanation 👍
Thanks for watching!
anybody here cuz of windows 11
Most of you will have a CPU with what Intel calls its firmware-based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), you may have to enable it in your BIOS
@@TechsavvyProductions Yeah but from what I looked up, W11 doesn't support many processors that aren't that old, according to Microsoft's own support list. For example, my i5-4690K according to them won't run it. Yeah, it's 7 years old at this point but it's still pretty good and runs W10 well. On the AMD side, first gen Ryzen chips are not supported and they're not even 4 years old yet.
I get they want this OS to be secure with newer hardware that probably has hardware security functions and W11 isn't out yet so maybe they'll find a way to add support but I can see a lot of people just sticking with Windows 10. I don't know. We'll see.
Lowell Vanderpool, Your teaching is cool and concept is crystal clear.....!
thank you..... :)
Thanks for the comments and for watching!
You could summarize a huge book in a short video that's Sir vanderpool's feature thanks so much
Thanks for watching!
It's similar to Apple T2 Chip (Apple T2 chip can do more and control video and audio etc>>>)
Thanks for watching!
Can't wait for this to be used for DRM. Say hello to audio files that are locked only to a specific computer and locked to a specific "secure" music playing program. Hell, they may just charge you a renting fee or else they invalidate your files. The future is amazing.
What was interesting is that they never used it for DRM.
@@TechsavvyProductions Yet. Once every device is forced to have the 2.0 chip (which is what Microsoft is aggressively pushing for), we will see it used that way.
I don't care what they say. As long as it is possible to use it for DRM, it only becomes a matter of when it will be used for DRM.
TPMs existed for a decade and hardly saw any use for the end consumer until Windows 11. However, every article shilling for TPM mentioned how it can be used for DRM and surveillance.
Thanks for the video, not surprised to miss Apple in TCG.
Thanks for watching!
Excellent video
Thanks for watching!
Wow, that was technical,, I need an aspirin!
Thanks for watching!!
@@TechsavvyProductionsindeed of course it was an indepth exploitation on the TPM. However, my interest of understanding on the matter of TPM might be off. I was thinking the TPM security scenario would be something that prevented your system from getting hacked into thru internet measures and such. What say ye..?
TPM can secure your boot files from hacking if you turn on "Secure Boot" , it can hide your BitLocker keys if you decide to encrypt you hard drive. It can save and protect your log on credentials if you use Windows Hello. It is an important part of your security if you enable these features.
Thank you so much sir for sharing this Valuable knowledge ..Almighty Bless you always
Thanks for watching!!!
Windows 11 made me come here😄😄
Most of you will have a CPU with what Intel calls its firmware-based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), you may have to enable it in your BIOS
I am trying to restore an entire machine backup downloaded to an external hard drive from iDrive, using a bootable thumb drive that accesses idrive restore software. From there I am supposed to choose the backup file from the external hard drive and then select my laptop's hard drive to restore to. The issue is that the laptop's hard drive doesn't appear as an option to restore to. It is listed as X: drive as an option to select the backup file from, but not as an option to restore to. Is this due to TPM? Disabling secure boot didn't help. iDrive tech support says my laptop's hard drive is bad, but my laptop is less than a year old, and all diagnostics says it's hard drive is fine.
Test the HD with Seagate Seatools HD diagnostic, if it shows a healthy disk then assume it is fine. TPM should not interfere with this process. If the disk is fine, use "diskpart.exe" to clean the drive and try the restore again.
@@TechsavvyProductions Oops! I must have asked this question on a few of your videos. I diagnosed my HD with HD sentinal and it ranked 100% excellent. I will try the diskpart.exe clean up and see if that works. Thank you so much for your suggestion.
Wow ! Amazing video... You are doing a great job.
I am always grateful when it can help anyone better understand the technology
So Apple's T2 chip is basically TPM too right? Thank you for this very informative video Sir.
From what I have read the T2 does have some of the same functionality of a TPM. Thanks for watching!
@@TechsavvyProductions Hhmmm. Is it safe to say that it's based from TPM technology Sir? Thank you for the response. I'm learning a lot from your videos Sir.
trustedcomputinggroup.org/ The Trusted Computing Group is an alliance of vendors who set the standards for TPM, Apple is missing from this group.
Lowell, did you know that on your intro the board you have there would never do anything? Well maybe it would burn your house down.
You are probably right! Thanks for watching!
Great detailed video. When I ran the Windows 11 compatibility check, it mentioned TPM. I thought "What is TPM?" Thanks for helping out with that question.
I had to enable this in my BIOS on my Asus Z390 Chipset motherboard. Looks like it was disabled by default.
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
Good work, greetings from Chile =)
A warm welcome to our friends in Chile!
Thanks and well understand
Thanks for watching!
Interesting and now one just needs to address concerns like TPM and DRM.
Thank you for watching!
hi sir! can u tel me wich its good or recommend u? on-TPM OR off TPM? WITCH ITS BEST OPTIONOR GOOD AND RECOMMENDED.. I HAVE Z370 MB AND 8700K?
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
My motherboard is an Asus Z97-Deluxe, it has a connector for the TPM-L R2.0 (20-1) module, but it is 20-pin, but this module no longer exists or I can't get it, there will be some way to adapt a 14-pin TPM-M R2.0 (14-1) module?
Juan only if the manufacture says that can work. I would have to dig in the support section and see, my guess is no. But with Windows 11 coming it would be worth researching.
Great overview, thanks!
Thanks for watching!!!
well lets say your motherboards comes without TPM but CPU from 2018 upwards will have TPM as standard, does that protect all of the hardware within the same system or just CPU?
Hardware TPMs or CPU-based TPMs allow operating systems to validate boot files as "untampered". Applications and operating systems can use TPM to store secrets in hardened methods. Enterprise is moving to use TPM to validate the entire operating system as valid and not tampered. I hope that answers your question.
So is there any advantage in getting a discrete TPM chip rather than using the CPU's onboard TPM?
Hardware TPMs are more secure, but all your phones use a firmware type of TPM and they have done well with this type of implementation.
One big consideration many might have is...if TPM is enabled and secure boot too, can you still image an OS on the boot drive/SSD and restore it later and can you move that same SSD from one motherboard to another when you might upgrade or replace a motherboard? Or, if you buy a larger SSD, can you still restore the previous OS from the previous SSD to the new larger SSD? I'm thinking no if there are security keys that might be looking for the same motherboard and/or SSD hardware id's.
Great questions: If you have TPM and Secure boot enabled on your present OS and want to reinstall or image.
1. Force BIOS to default; this clears all the data in your TPM.
2. Disable Secure boot so you can reimage the PC. After all, is right with the world, and your computer appears stable; enable TPM and Secure boot.
This would address a new HD or a reinstall.
3. For the cloning (reimage) of an existing HD to a larger one, if you use clone software, follow steps 1 & 2; you should not have any issues.
4, If you have Bitlocker kb.acronis.com/content/56619
@@TechsavvyProductions My honest opinion by October is, MS will not require TPM for Win 11. Too many computers will not be able to run it.
Garth, we will see. The SolarWinds breach was a major compromise not only for the government but for Windows, Microsoft concedes that they access to source code for Windows. The only way to protect PCs from future tampering is having a TPM and Secure Boot. I do not think Microsoft has a choice, this hints at the seriousness of the SolarWinds breach. There will be all kinds of work-arounds so most folks will have Windows 11, but major enterprise and governments will be moving to new hardware.
@@TechsavvyProductions Seems fair for the big corps and big tech...they really shouldn't have old hardware in operation when they are holding secured data.
That's why TPM sucks
AWESOME VIDEO!!just need a pop filter for your microphone
Yes, I did purchase a new mic!! Thanks for watching and keep the comments coming.
What do you mean with Ready To Go??????/Does it mean TPM is enabled in the BIOS or NOT????????
Yes, it is enabled. You should be able to use many Windows features that require TPM.
TPM 1.2 debuted in 2012 and TPM 2.0 premiered in 2014 If I remember correctly. Bypassing it for the initial install is possible by hacking the ISO. There are videos on how to do it. But here is the catch and it's a doozy: Microsoft will link the TPM to the Microsoft Store for the purposes of software license enforcement. i.e. software may use the computer's unique TPM and a Microsoft Account for Product Activation to validate any software you try to install. They could go as far as to validate every time you start an app or a windows component like edge. This could also prevent Firefox and Chrome from installing as well. Without being able to activate a browser you have no internet access. So, bypassing it for install may still leave you with a system that can't run anything including edge and any apps you also will not be able to install any software. You would be effectively locked out of the App Store. They may also tie it to windows activation leaving you with a machine that boots to windows that cannot run anything at all whatsoever. It is not clear how far they are planning to go in terms of utilizing TPM and Windows activation. These are likely scenarios being discussed by several well-informed groups on the internet.
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
@@TechsavvyProductions The requirements were updated on Friday to remove the soft shelf requirements so TPM 1.2 will not work.
@@TechsavvyProductions That article also missed the requirement that laptops must have powered functional webcams or else Windows 11 will not boot. That article is out of date and needs a correction.
@@TechsavvyProductions TPM 1.2 debuted in 2014 and TPM 2.0 premiered in 2018 If I remember correctly. Bypassing it for the initial install is possible by hacking the ISO. There are videos on how to do it. But here is the catch and it's a doozy: Microsoft will link the TPM to the Microsoft Store for the purposes of software license enforcement. i.e. software may use the computer's unique TPM and a Microsoft Account for Product Activation to validate any software you try to install. They could go as far as to validate every time you start an app or a windows component like edge. This could also prevent Firefox and Chrome from installing as well. Without being able to activate a browser you have no internet access. So, bypassing it for install may still leave you with a system that can't run anything including edge and any apps you also will not be able to install any software. You would be effectively locked out of the App Store. They may also tie it to windows activation leaving you with a machine that boots to windows that cannot run anything at all whatsoever. It is not clear how far they are planning to go in terms of utilizing TPM and Windows activation. These are likely scenarios being discussed by several well-informed groups on the internet
Hello dude
Is Asus h81m-cs motherboard supports TPM 2.0 or not?
Can I am able to upgrade from Windows 10 to windows 11 on Asus H81M-CS motherboard or not?
Start by downloading your motherboard manual, they are free downloads. Most Intel and AMD support the following: Intel calls its firmware based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), check out your CPU and see.
@@TechsavvyProductions thanks dude
I have Asus h81M -CS motherboard and intel core i5 4670 processor. Is my pc able to get windows 11 update with this motherboard and processor combination ?
How would this effect me trying to replace windows with Ubuntu? Last time I tried to live boot something other than windows, it freaked out and locked my hard drive. Luckily I had the bitlocker key and was able to get it open again. If I were to attemt to install Ubuntu and completely erase Windows, would the tpm freak out and turn my laptop into a paper weight?
You can unencrypt your HD then watch the video on Windows 10 and TPM : ua-cam.com/video/PLef73R3OpY/v-deo.html It will explain how to clear your TPM and then install Ubuntu. You should be fine.
Excellent information!
Thank you for watching
Hello sir, I have "Asus H170 pro" Motherboard and ki 6th gen Processor whether this board has TPM or not . Please guide me..
Your motherboard H170 chip supports: Intel® Platform Trust Technology (Intel® PTT) Intel® Platform Trust Technology (Intel® PTT) is a platform functionality for credential storage and key management used by Windows 8* and Windows® 10. Intel® PTT supports BitLocker* for hard drive encryption and supports all Microsoft requirements for firmware Trusted Platform Module (fTPM) 2.0. Thanks for watching. You can enable it in the firmware.
@@TechsavvyProductions Please help me at any desk bcoz i am very tense
Funny how major corporations confuse control and security huh.
Thanks for watching!
Basically (in general) if I have an encrypted SSD installed in a motherboard with TPM, and I move the drive in another system (with another TPM chip), that drive will not be usable even if I have the password. Correct ?
And will I be able to use the encrypted drive if I also move the TPM chip ? (the TPM types that plug in motherboards).
Thanks.
Some SSDs have their encryption and do not use the motherboard TPM, and if that is the case, then the SSD is independent of the motherboard. If you used Bitlocker, then yes, your motherboard TPM will be used, and you should have been prompted to print or save a recovery key. That key can be used on a new motherboard to decrypt the drive. I hope that helps.
Windows Bitlocker uses TPM to store a key, but it ALSO has a backup key in case you need to move to a new computer. But without the key it's locked to that laptop.
msi 990fxa-gd65 n1996 use's what TMP module dose it take ????+
check MSI support pages, you should be able to download the motherboard manual and find the part #
Done that it dose not give any information .. So i found a bypass that works will . Now i have Windows 11 pro running on a unsupported motherboard .
hi man i have msi b550 gaming edge wifi and i upgraded w11 2 days ago and i enter bios to enable tpm but i pressed enroll all delete factory keys by accident and now i cant access my bios i check it and tpm says false but i should have tpm anyway i guess its broken and how can i repair it pls help me i cant play game i cant access my bios i cant format my pc
Because your TPM security hardware is a physical part of your computer, you might want to read the MSI motherboard manual or search the manufacturer's website. MSI should have a step by step on how to restore your motherboard security keys. You might also reach out to MSI tech support.
Thank you for explanation.
Glad it was helpful!
Perfect 🤩
Thanks for watching!
Superb ❤
Thanks 🤗
Will this stop the NSA from spying using the Minix that's built into Intel CPUs?
Most of you will have a CPU with what Intel calls its firmware-based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), you may have to enable it in your BIOS
I came home three days ago and this message was on the screen and won't go away. "Enabling Trusted Platform Module.. ". How do I get this to go away
What OS? What motherboard? What changed on the system prior to the message? What have you done so far?
@@TechsavvyProductions I don't know anything about computers. I just bought it from Walmart four months ago. I don't do anything with it much. It has windows 10. I came home 3 days ago and.this message waa on the screen. I turn it off and when I turn it back on the message is still there.
@@TechsavvyProductions I have not done anything so far cause I don't know about computers.
I clear my tpm while resetting my pc ... will this be an issue pls answer
Yes you need to watch my second video on TPM and I will show you how to reenter your information. ua-cam.com/video/PLef73R3OpY/v-deo.html
Thanks!
You bet!
Can you share more info about vTPN Cloud ?
docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-A43B6914-E5F9-4CB1-9277-448AC9C467FB.html
Thanks Lowell Vanderpool
Thanks for watching
I hear there are problems with TPM and SSD drives, do you know if this is true?
I briefly looked at forums and saw some folks having troubles with BitLocker and SSDs, or SSDs with built-in encryption, some of these folks were contributing it to TPM. SSDs are the standard for most devices today. I feel confident that there are very few issues with having an SSD and using TPM. I run SSDs and TPM on all my Windows devices.
@@TechsavvyProductions : Thank you, appreciated.
Thank you
Welcome!
I trust this man.
Thanks for watching!
Watching after windows 11 launch :-P
Before that I don't know what it is 🤣
Thanks for watching!
Thanks a lot
Most welcome
Can i update tpm 1.2 to 2.0 in 4th generation laptop?
Check your laptop vendor to see, laptops are very limited in upgrade options. But it is worth checking. Thanks for watching.
@@TechsavvyProductions thankyou
thanks a lot
I updated this video for TPM 2.0, the link is in the video description.
bhai logo kon kon window 11 ke liye aaya h
देखने के लिए धन्यवाद!
What do I do if my tpm says it’s available?
check under Windows settings, Windows Security, Device security and see if Windows is using the TPM
You begun explaining TPM at 1;56...
Thank you for watching!
T P M - TRACKING PLATFORM MODULE tracking you and all your device!
Thanks for watching and the comment!
he explained the obvious part for 10 mins, yet we still dont know how the hell we can use it actually
Sorry about that, you can enable secure boot in your firmware, enable BitLocker for drive encryption and enable Windows Hello for a PIN logon, all of those features will take advantage of your TPM. ua-cam.com/video/W16Xm1QWZIY/v-deo.html
Are you sponsored by small and soft?
Thanks for watching!
Who's here because of Windows 11?
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
wow wonderfull
Thanks for watching!
If let's say I get caught by police and someone throws my TPM module away that means that nobody ever gonna have access to my pc?
I think you're missing the point, TPM is designed not to prevent anyone from booting a PC but to prevent someone (a threat actor from changing a boot file or modify the boot process without your knowing). If the boot process is tampered with, then intervention will be required alerting you something has changed. In your example: The police will boot the PC with or without the TPM.
@@TechsavvyProductions Thank you for your answer.
so TPM is basically like a motherboard level yubikey
I like your analogy
where is 1 day ago comment
can i get the content of vedio?
There should be links in the video description for video notes and slide deck.
Gratitude
Thanks for watching!
I always wonder what that tpm header does on my motherboard
Wow ryzen Pro has it built in nice
I have b350 does it have built in oh wait no it has that header
So what it is it helps so i dont get hacked
Thanks for watching!
But who says what is a "good" state?
Microsoft like Google have a servers with known hashes for good states and the client can be compared with these standards.
Who's here after knowing that Windows 11 requires TPM?
The TPM requirement has many Windows 10 users worried-often unnecessarily. See arstechnica.com/gadgets/2021/06/heres-what-youll-need-to-upgrade-to-windows-11/
@@TechsavvyProductions yeah, thankfully my 3 years old PC and my 5 years old HP laptop have TPM available. BTW your videos should go viral in the upcoming weeks.
Zero Zero Sambungkan dengan 1 saya dan alat komputer saya akan bekerja Siapa yang paling data tanpa izin akan diketahui oleh Google Map kepolisian Google akan siap melaporkan ke pusat satelit seluruh benua Google Map akan bekerja Siapa yang paling data akan ikan kakap tanpa izin Halo data seluruh data Google Map yang penjaga Siapa yang mau maling data langsung otomatis ke no blog otomatis dan datanya akan dikunci dan dikirimkan dengan satelit akan dipampangkan di depan seluruh dunia kirimkan dan Sambungkan dengan satelitnya Zero Zero Zero Zero kirimkan dan kunci antivirus bekerja Google Map menjaga kirim
Terima kasih dari Indonesia!
So Balmer could disable my computer remotely from redmond for voting for Trump? How convenient.
Most of you will have a CPU with what Intel calls its firmware-based TPM iPPT (Intel Platform Protection Technology), and AMD calls its own fTPM (Firmware Trusted Platform Module). Generally speaking, iPPT shows up in most Haswell (4th-gen Core) CPUs, although the K-series gaming models inexplicably fail to get iPPT until Skylake (6th-gen Core), you may have to enable it in your BIOS
I hate tmp
Thanks for watching!
Does it work for Android
All phones use a software version of TPM.