Clear trusted platform module windows 1011/10/2023 Download this PowerShell script, copy it to your deployment share and add a Run PowerShell Script item to your task sequence in your State Restore phase before you run Enable Bitlocker / Invoke MBAM Client Deployment.Add the property NeedRebootTpmClear to your CustomSettings.ini.The value of 5 denotes the Clear method which resets the TPM to its factory-default state. To clear the TPM we can make use of the SetPhysicalPresenceRequest method of the Win32_Tpm class. While it may be applicable in some scenarios you should still excercise greater control over TPM provisioning in an Enterprise OSD scenario. I am assuming that the implementation will suspend BitLocker if clearing could cause BitLocker recovery to be required and that Bitlocker would automatically resume once TPM has been auto provisioned by the OS. The prompt can be dismissed, but will reappear after every reboot and login until the policy is disabled or until the TPM is in a Ready state. The prompt to clear the TPM will start occurring after the next reboot, upon user login only if the logged in user is part of the Administrators group for the system. This policy will take effect only if the system's TPM is in a state other than Ready, including if the TPM is "Ready, with reduced functionality". Note: Windintroduces a policy setting that configures the system to prompt the user to clear the TPM if the TPM is detected to be in any state other than Ready.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |