Hard Drive Boot Password has nothing to do with Bitlocker.
When BitLocker is used without a TPM, the required encryption keys must be stored on a USB flash drive. On computers that do not have a TPM version 1.2, you can still use BitLocker to encrypt the Windows operating system drive. However, this implementation will require the user to insert a USB startup key to start the computer or resume from hibernation, and it does not provide the pre-startup system integrity verification offered by BitLocker with a TPM.
While waiting for a response, I went ahead and updated my BIOS from version A04 to A10.
That did nothing to change the message that appears when I try to turn BitLocker on. It still says, "A compatible TPM Security Device must be present on the computer, but a TPM was not found."
Also, when viewing TPM Admin link in the BitLocker dialog, I see that TPM Management on Local Computer says pretty much the same thing... "TPM cannot be found on this computer. Verify that this computer has a 1.2 TPM and it is turned on in BIOS".
This takes me back to a point in my OP, that I have read that some computers have TPMs that do not appear in the W7 TPM MMC due to a BIOS setting that hides the TPM by default, and it must be enabled in BIOS. This info was found at a MS Technet site here --> http://technet.microsoft.com/en-us/library/ee449438(v=ws.10).aspx#BKMK_HaveTPM
I still can't find this setting in BIOS. Any help will be surely appreciated. Just trying to get BitLocker running on W7 Ultimate.
As it turns out, that link goes to the manual for the 620s even though it's listed on the support page for the 620. That said, I see the same HDD protection setting in the real manual for the 620.
Not sure what to tell you except it appears your system doesn't support TPM. I'll see if my Dell tech contacts have any comments...
Yes, please check. I'm discouraged, after purchasing the upgrade to Ultimate, to discover that this TPM issue may preclude me from going forward. i think there is a way with USB, but it's not as secure.
But when was that statement issued, relative to when your system first came out, before or after...? I dunno....
Still doesn't explain why the manuals list a HDD Protection option for both 620 and 620s that you can't find. Are the manuals just wrong? Naw...no way, impossible, never, ever could happen that a Dell made a mistake in a manual. :emotion-4:
Sorry 'bout that.
Maybe you should just use free TrueCrypt to encrypt certain files/folders on your HDD. I use it with Win 7 Pro to keep prying eyes out of certain things. :emotion-5:
Unfortunately, I just found this, if it is accurate...
Which Dell systems support TPM?
The TPM 1.2 security hardware device comes standard on the following LatitudeTM notebook systems: Latitude D420, D620, D820, OptiPlexTM desktop systems: OptiPlex 745, 740 and Dell PrecisionTM Mobile Workstations M65, M90. Dell recommends the use of Microsoft® Windows® XP Professional XP Professional operating system with TPM which includes advanced security, mobility and networking features. TPM is currently not supported by Dell on Red Hat® Linux® operating systems. Customers who deploy TPM should also purchase Wave Systems Embassy Trust Suite from Dell Software & Peripherals to enable full TPM features including key archival and migration.
Yes, TrueCrypt had been my #1 focus when contemplating encryption, but then I started liking the idea of BitLocker being native, and I confess to a degree of confusion involving TC's recent "troubles". I realize that a software does not have to be actively under development in order for it to be viable, but it sure helps, and given a choice, I would always prefer running a program that is not' abandonware'.
Is there anywhere else these settings could be? I am tapping the F2 key on restart and entering what is called "Aptio Setup Utility". It doesn't look quite as detailed as Setups I have played around with on some of the other Dell machines I have owned over the years. Sigh.
"The Fritz Chip aka TPM is not available on Dimension or Inspiron models."
Thanks, SpeedStep. That answers the question pretty definitively, I'd say. If I elect to stay with BitLocker, I'll go the USB startup key route.
Thanks also to RoHe for your efforts to assist. I appreciate your time, and might very well give TrueCrypt a try, though there appears to be a steep learning curve (for the likes of me).
Not much learning curve for TrueCrypt. Took me ~10 min to create a 100 GB "file" on my 1.5T HDD and set up an encryption key (password). Once that's done you just launch TrueCrypt and select that file from the TC home screen and mount it (assign an unused drive letter) so Windows sees it as a separate drive, and then enter the encryption key.
From that point on, it looks just like any other drive. You can drag / drop files or folders into or out of the encrypted area, delete files or folders, open data files with their parent software (eg, Microsoft Office) just like they weren't encrypted. In other words it's totally transparent to Windows and to you as long as you don't forget the encryption key! :emotion-5:
If the file isn't mounted, Windows just shows it in Explorer as an ordinary file, except it can't open it.
Famous last words, RoHe. The User Guide is 150 pages long! Written like a technical report. Accidents waiting to happen everywhere you look. I'm gonna wade in, but the water looks dangerous. :emotion-42:
You posted that TPM is available on the Dell Vostro 1220, but I cannot see how to enable it in the bios not anywhere else. Bitlocker says it needs TPM. I seem to have a compatible laptop but what next?
speedstep
9 Legend
•
47K Posts
1
September 15th, 2014 07:00
Hard Drive Boot Password has nothing to do with Bitlocker.
When BitLocker is used without a TPM, the required encryption keys must be stored on a USB flash drive. On computers that do not have a TPM version 1.2, you can still use BitLocker to encrypt the Windows operating system drive. However, this implementation will require the user to insert a USB startup key to start the computer or resume from hibernation, and it does not provide the pre-startup system integrity verification offered by BitLocker with a TPM.
http://technet.microsoft.com/en-us/library/cc732774.aspx
The Fritz Chip aka TPM is not available on Dimension or Inspiron models. Its not available for export and its illegal in russia.
Its only on Select Optiplex, Vostro, Precision, Latitude Models.
http://dell.wave.com/dell-trusted-platform-module-matrix
The following Dell models contain Trusted Platform Modules
E4200 Notebook
E4300 Notebook
E5400 Notebook
E5500 Notebook
E6400 Notebook
E6400 ATG Notebook
XFR E6400 Notebook
E6500 Notebook
XT Tablet Notebook
XT2 Tablet Notebook
XFR Tablet Notebook
D420 Notebook
D430 Notebook
D530 Notebook
D531 Notebook
D610 Notebook
D620 Notebook
D630 Notebook
D631 Notebook
D810 Notebook
D820 Notebook
D830 Notebook
E7240 Notebook
E7440 Notebook
E6440 Notebook
E6540 Notebook
E5440 Notebook
E5540 Notebook
3330 Notebook
3440 Notebook
3540 Notebook
M2400 Notebook
M4400 Notebook
M6400 Notebook
M4800 Workstation
M6800 Workstation
T3500 Desktop
T5500 Desktop
T7500 Desktop
M65 Notebook
M90 Notebook
M4300 Notebook
M6300 Notebook
R7610 Desktop
T3610 Desktop
T5610 Desktop
T7610 Desktop
T1700 Desktop
740 Desktop
745 Desktop
760 Desktop
960 Desktop
GX620 Corporate Desktop
3011AIO Desktop
XE2 Desktop
9020 AIO Desktop
9020 Desktop
3020 Desktop
1220 Notebook
1320 Notebook
1520 Notebook
1720 Notebook
RoHe
10 Elder
•
45.2K Posts
1
September 13th, 2014 19:00
You left out the key piece of info...What PC model is this? :emotion-3:
mynorgeek
39 Posts
0
September 13th, 2014 19:00
Inspiron 620 :emotion-1:
mynorgeek
39 Posts
0
September 14th, 2014 13:00
While waiting for a response, I went ahead and updated my BIOS from version A04 to A10.
That did nothing to change the message that appears when I try to turn BitLocker on. It still says, "A compatible TPM Security Device must be present on the computer, but a TPM was not found."
Also, when viewing TPM Admin link in the BitLocker dialog, I see that TPM Management on Local Computer says pretty much the same thing... "TPM cannot be found on this computer. Verify that this computer has a 1.2 TPM and it is turned on in BIOS".
This takes me back to a point in my OP, that I have read that some computers have TPMs that do not appear in the W7 TPM MMC due to a BIOS setting that hides the TPM by default, and it must be enabled in BIOS. This info was found at a MS Technet site here --> http://technet.microsoft.com/en-us/library/ee449438(v=ws.10).aspx#BKMK_HaveTPM
I still can't find this setting in BIOS. Any help will be surely appreciated. Just trying to get BitLocker running on W7 Ultimate.
TY!
RoHe
10 Elder
•
45.2K Posts
1
September 14th, 2014 17:00
I see an entry in the manual for a BIOS option "HDD Protection Feature" (Disabled by default). That might be TPM in disguise.
See at what happens when you select that option and enable it. Be sure to save the change before exiting setup.
EDIT: Link fixed
RoHe
10 Elder
•
45.2K Posts
1
September 14th, 2014 18:00
As it turns out, that link goes to the manual for the 620s even though it's listed on the support page for the 620. That said, I see the same HDD protection setting in the real manual for the 620.
Not sure what to tell you except it appears your system doesn't support TPM. I'll see if my Dell tech contacts have any comments...
mynorgeek
39 Posts
0
September 14th, 2014 18:00
Unfortunately, nothing like that shows in my computer's Setup Utility. "HDD Protection Feature" looked promising, too.
I wish I could show you a screenshot of what I see, but I'll outline it quickly below:
Five column headers... Main ; Advanced ; Boot ; Security and Exit.
Selecting 'Security', all I see on that page is as follows:
Unlock Setup Status Unlocked
Admin Password Status Not Installed
System Password Status Not Installed
mynorgeek
39 Posts
0
September 14th, 2014 19:00
Yes, please check. I'm discouraged, after purchasing the upgrade to Ultimate, to discover that this TPM issue may preclude me from going forward. i think there is a way with USB, but it's not as secure.
TY
RoHe
10 Elder
•
45.2K Posts
1
September 14th, 2014 19:00
But when was that statement issued, relative to when your system first came out, before or after...? I dunno....
Still doesn't explain why the manuals list a HDD Protection option for both 620 and 620s that you can't find. Are the manuals just wrong? Naw...no way, impossible, never, ever could happen that a Dell made a mistake in a manual. :emotion-4:
Sorry 'bout that.
Maybe you should just use free TrueCrypt to encrypt certain files/folders on your HDD. I use it with Win 7 Pro to keep prying eyes out of certain things. :emotion-5:
mynorgeek
39 Posts
0
September 14th, 2014 19:00
Unfortunately, I just found this, if it is accurate...
http://www.dell.com/content/learnmore/learnmore.aspx?c=us&cs=04&~id=smartcard&~series=latit&~tab=recommendations
mynorgeek
39 Posts
0
September 14th, 2014 20:00
Yes, TrueCrypt had been my #1 focus when contemplating encryption, but then I started liking the idea of BitLocker being native, and I confess to a degree of confusion involving TC's recent "troubles". I realize that a software does not have to be actively under development in order for it to be viable, but it sure helps, and given a choice, I would always prefer running a program that is not' abandonware'.
Is there anywhere else these settings could be? I am tapping the F2 key on restart and entering what is called "Aptio Setup Utility". It doesn't look quite as detailed as Setups I have played around with on some of the other Dell machines I have owned over the years. Sigh.
mynorgeek
39 Posts
0
September 15th, 2014 07:00
"The Fritz Chip aka TPM is not available on Dimension or Inspiron models."
Thanks, SpeedStep. That answers the question pretty definitively, I'd say. If I elect to stay with BitLocker, I'll go the USB startup key route.
Thanks also to RoHe for your efforts to assist. I appreciate your time, and might very well give TrueCrypt a try, though there appears to be a steep learning curve (for the likes of me).
RoHe
10 Elder
•
45.2K Posts
1
September 15th, 2014 13:00
Glad Speed gave you the answer you needed.
Not much learning curve for TrueCrypt. Took me ~10 min to create a 100 GB "file" on my 1.5T HDD and set up an encryption key (password). Once that's done you just launch TrueCrypt and select that file from the TC home screen and mount it (assign an unused drive letter) so Windows sees it as a separate drive, and then enter the encryption key.
From that point on, it looks just like any other drive. You can drag / drop files or folders into or out of the encrypted area, delete files or folders, open data files with their parent software (eg, Microsoft Office) just like they weren't encrypted. In other words it's totally transparent to Windows and to you as long as you don't forget the encryption key! :emotion-5:
If the file isn't mounted, Windows just shows it in Explorer as an ordinary file, except it can't open it.
mynorgeek
39 Posts
0
September 17th, 2014 07:00
Famous last words, RoHe. The User Guide is 150 pages long! Written like a technical report. Accidents waiting to happen everywhere you look. I'm gonna wade in, but the water looks dangerous. :emotion-42:
Cavehomme2
2 Posts
0
April 8th, 2015 09:00
You posted that TPM is available on the Dell Vostro 1220, but I cannot see how to enable it in the bios not anywhere else. Bitlocker says it needs TPM. I seem to have a compatible laptop but what next?