Dell Latitude E7270/E7470 System BIOS 1.15.4, Bitlocker fails

Just wondering this latest BIOS 1.15.4 issue  is causing by the TPM version as well as the UEFI system mode and storage format type.

For those who still in BIOS1.15.4 can try to upgrade the TPM version follow the instruction from Dell step by step.  

Basically as know from other posting on Internet, below is the combination it works.

Windows 7 : TPM 1.2 + BIOS boot

Windows 10 : TPM 1.2 + BIOS boot or TPM 2.0 + UEFI boot

I have faced the same issue here on my Latitude E7270 with win10, BIOS 1.15.4. Have tested on older BIOS 1.13.4 and is good with TPM1.2.

Find another solution below,

www.dell.com/.../resolving-a-problem-enabling-bitlocker-on-a-latitude-exx70-pc-with-windows-10-installed

Wondering it will works on this new BIOS 1.15.4. But seem like is quite troublesome. Anyone who are still on BIOS1.15.4 can try out.

@Lhiker, I am on Win 10 and TPM 1.2 + BIOS (legacy) boot and it does *not* work, as I wrote more in detail in a post a few days ago.

I am considering upgrading to UEFI and TPM 2.0, but I would like to have a BIOS that I can trust first. Not sure if this will work with the current BIOS, has anyone tested it?

It's been over a month since first initial report of this issue and there is no fix available.  I'm quite disappointed with Dell right now.  I won't be buying products from Dell again.  

I agree with BarnYardHouse; it's very dissapointing the way Dell deal with this problem.

I've been waiting for the fix ever since the release of the famous 1.15.4. The best solution right now in my opinion is just to downgrade your Bios to the previous version and wait for a fix from Dell engineers (hopefully it won't take too long for Dell to figure out what's behind this strange behavior).

After many weeks of trying I have now successfully enabled bios 1.15.4 with bitlocker and normal behavior of not having to enter the key at boot up.

Here goes, it is extremely convoluting I will give myself this too ;-)

1. Update the TPM to version 2.0

1a. This means if you are legacy booting you need to switch to UEFI

1b. One NEEDS Windows 10, 1703 for t his to work properly as MBR2GPT needs to be ran

Follow EXACTLY the steps in how to update from TPM 1.2 to TPM 2.0 which means running PowerShell scripting in Administrator mode (if you do not have admin mode to your machine this write up will not work).  Clear the TPM and take away auto assign of TPM from Windows - following the steps as outlined by Dell.

During the TPM activation you will see the warning that the TPM can only be partially used (TPM.MSC) because the system is still set to boot from legacy bios.  Get familiar with MBR2GPT which is a standard utility for Windows 10, so no downloading from "handy" websites.

docs.microsoft.com/.../mbr-to-gpt

If you do not have this utility update Windows 10 to version 1703.

Once the utility has ran (~20 seconds) your hard drive now has an EFI partition of about 100MB.  Do not delete or move around any of the partitions.

Reboot to bios (F2) and switch boot to UEFI - the bios will actually pick the right EFI immediately.

Save and exit (reboot)

System now boots into Windows 10 - hence system is working properly with TPM

Follow the steps to give TPM control back to Windows 10.

This is the end of TPM switch over - it is the most exciting part....

I already had 1.15.4 on my system, down grade would not work at this moment - could be TPM related.

At this moment I started the encryption of Drive C:

It took close to 35 hours (Thanks Microsoft for your AES mess up on a assumingly fast NVME drive).

Print off the recovery key - did I mention that I am getting paranoid with the encryption keys....?

Reboot - mine worked, no more asking for keys.

Happy I am.... GPT/UEFI boot, seems all legit and working as it should be, startup is speedy again too.

-Al

Confirmed - new BIOS 1.16.4 with TPM 1.2, UEFI Boot, and AHCI is working with BitLocker. No recovery key required after shutting down/restarting for E7470.

We have confirmed BIOS 1.16.4 works properly with TPM 1.2, Windows 7 and Bitlocker for the Latitude E7470.

The BIOS 1.16.4 works properly on Windows 10, Legacy boot, TPM1.2 with Bitlocker. NO NEED to turn off bitlocker or TPM to upgrade the BIOS. It just work fined with direct upgrading.

Thanks for the great guide work perfect!

Dear Dell, please ensure Dell CommandUpdate is pushing this update too.

It still is pushing 1.15.4 (why not withdraw it?) and on various E7470's in our organization the 1.16.4 is not even pushed ('"no updates available").

The manual procedure required to fix this issue is a missed opportunity.

Confirmed that BIOS 1.17.3 with TPM 1.2 on Windows 10 pro does not work.  I get blue screens using m.2 drives.

Bios 1.17.3? - We're running 1.17.5 on our 7470's, without any issues.  Win 10 x64 (1607) Enterprise.

I have Dell Precision 7520

Failed to run the action: Enable BitLocker.

The BIOS did not correctly communicate with the Trusted Platform Module (TPM). Contact the computer manufacturer for BIOS upgrade instructions. (Error: 80310002; Source: Windows)

'ProtectKeyWithTPM' failed (2150694914)

Failed to enable key protectors (0x80310002)