Updating the BIOS on Dell Systems With BitLocker Enabled

Updating the BIOS on Dell Systems With BitLocker Enabled

Article Summary: This article advises on precautions when updating the BIOS on systems with BitLocker enabled and also what to do if after a recent BIOS update BitLocker experiences an issue.

Table of Contents :

  1. Updating BIOS (Bitlocker Enabled)
  2. Solution
  3. Updated BIOS and BitLocker is showing an error

1. Updating BIOS with Bitlocker

When updating the BIOS on a system with BitLocker < Enabled > please be aware of the below.

Caution: If BitLocker is not suspended, the next time you reboot the system it will not recognize the BitLocker key.
You will then be prompted to enter the recovery key to progress and the system will ask for this on each reboot.

If the recovery key is unknown this can result in data loss or unnecessary operating system re-install.

2. Solution

Note: If the BitLocker icon is not seen this could be down to restrictions put in place by system administrators. If this is the case contact your system administrator for assistance.

Method One: The easiest solution is to suspend BitLocker before updating the BIOS.

  1. Click Start

  2. Go to Control Panel > System and Security > BitLocker Drive Encryption

  1. Select Suspend Protection (you may be prompted to select yes to confirm this)

  2. You can now update the BIOS (latest can be downloaded from the Dell Support Website)

  3. Please see this Video Guide for help on updating the system BIOS.

  4. Or article How to update the BIOS on a Dell System

  5. After BIOS updated you can then Resume Protection

Method Two: Edit group policy for Bitlocker

  1. Click Start. In the Search box, type gpedit.msc and press Enter.

    Note: The system user must have administrator right to edit group policy.
  2. Local Computer Policy should be displayed, and options for Computer Configuration and User Configuration.

  3. Under Computer configuration, click Administrative Templates.

  4. Open Windows Components. click on Bitlocker Drive Encryption folder.

  5. In the right pane, click Configure TPM Platform Validation Profile.

  6. Double–click the Require additional authentication at startup policy. Set the policy for Disabled.

  7. Click Apply, then OK. Restart the system.

  8. Once BIOS is updated, repeat these steps and Re-enable Bitlocker.

Bitlocker Group Poilicy Editor

Method Three: Edit group policy for Bitlocker

  1. Click Start. In the Search box, type services and press Enter

  2. Scoll down and double click on Bitlocker Disk Drive Encryption Service

  3. Under General Tap on the popup window, next to Startup type click on the drop down box (manual) the select Disable

  4. Under Services Status, click on Stop

    Service Window

3. BIOS revisions causing an issue with BitLocker

The BIOS revisions listed below have been found to cause an error with BitLocker where it will not enable/resume when TPM is in TPM 2.0 mode. If you have recently updated your system BIOS to the version below please update again to the new version available on Dell Support Site to resolve the issue.

Note: It is recommended that you download and install the latest BIOS version from the Dell Drivers & Downloads website.


Affected BIOS Version

Latitude 7275


Latitude 5175/5179


Latitude 7370


Latitude E7270/E7470


Latitude E5270/E5470/E5570


Precision 3510


Precision 7510/7710


Caution: It is recommended that customers do not install a demoted BIOS, for any reason, even if they have a local copy. Always ensure that if a BIOS update is being carried out that the latest version is used.

Article ID: SLN153694

Last Date Modified: 12/19/2019 01:52 AM

Rate this article

Easy to understand
Was this article helpful?
Yes No
Send us feedback
Comments cannot contain these special characters: <>()\
Sorry, our feedback system is currently down. Please try again later.

Thank you for your feedback.