Trusted Platform Module (TPM) Support for Windows Server 2022 Operating System
Summary: This document is aimed at highlighting the important changes that have been made on the TPM (Trusted Platform Module) support for Windows Server 2022 Operating System with Dell Server from DELL in order the enable the critical features and to meet the pre-requisites from Microsoft. ...
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Instructions
TPM Support Stance:
TPM 2.0 is mandatory (should be installed and configured) for the following PowerEdge Servers shipping with Windows Server 2022 Operating System.
For the list of Dell EMC PowerEdge Servers supporting Windows Server 2022 Operating System, refer to DellEMC's OS support guide .
NOTE:
- For Dell EMC PowerEdge Servers shipped prior to January 1st, 2021 and/or Servers shipped with different OS/No OS (with TPM 1.2 or no TPM) can still run Windows Server 2022 Operating System with limited support.
- Minimum supported TPM 2.0 firmware versions are NPCT 650 (1.3.2.8) and NPCT 750 (7.2.2.0)
- Dell EMC PowerEdge Server with Windows Server can be shipped to China region with CTPM (China Trusted Platform Module)2.0.
- Minimum supported TPM firmware versions for CTPM is 7.51.x.x
- Microsoft has provided a waiver for China region to ship Windows Server 2022 Operating System without TPM 2.0.
TPM Configuration:
- For Dell EMC PowerEdge Servers in order to turn on TPM in bios settings:
• In the TPM Advanced Settings, below settings are the default.
NOTE: SHA384 should not be used with Windows Server 2022 Operating system.
Checking TPM status and basic provisioning in the Windows Server 2022 Operating System
Following methods can be used to check the TPM status:-
- On server core and Desktop Experience of Windows Server 2022 Operating System, TPM status can be obtained using Get-TPM Command in PowerShell.
2. TPM processor details can also be checked from the Device Security > Security Processor in Windows Server 2022 Desktop Experience Operating System.
4. Trusted Platform Module can be also found under security devices of the Device Manager.
Troubleshooting issues with TPM:
- If the TPM is not detected inside the OS, Clear the TPM Hierarchy in the BIOS Security Settings.
- While executing the PowerShell command Get-TPM in the OS, if the TPM present option is off, Check if the TPM is on in the BIOS Security Settings.
- If the TPM is not visible in Device Manager or if the TPM status is not ready in the TPM management console, Check if the TPM is “ON” in the BIOS Security Settings.
- If the TPM is showing “ON” in the BIOS Security Settings but is not visible in Device manager and/or the TPM status is not ready in the TPM management console in Windows Server 2022 Desktop Experience OS, follow the below steps:
- First Disable TPM Auto-Provisioning
- Open Windows Powershell
- Type the Powershell Command Disable-TPMAutoProvisioning.
- Check if the AutoProvisioning shows Disabled.
- Clear TPM
- Open the TPM Management Console (tpm.msc)
- In the Actions Pane, Click on Clear TPM
- Restart the Server.
- First Disable TPM Auto-Provisioning
- If you are receiving the following message: "The TPM is ON and ownership has not been taken” in tpm.msc
- Enable TPM Auto-Provisioning
- Open Windows PowerShell
- Type the PowerShell Command Enable-TPMAutoProvisioning
- Check if the AutoProvisioning shows Enabled.
- Enable TPM Auto-Provisioning
Affected Products
Microsoft Windows Server 2022Article Properties
Article Number: 000195562
Article Type: How To
Last Modified: 25 Jan 2022
Version: 2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.