Troubleshoot TPM issues

The TPM-chip plays a bigger role today when devices need to be more secure.

TPM is a small chip on the motherboard that stores RSA encryption keys, these keys are specific to your hardware.

During the last year I’ve noticed 2 different types of errors regarding the TPM-chip and that’s why I’m going to describe how I solved them.

The first one is hardware related and can’t be handled by normal users, that’s when the TPM-chip needs to be replaced.
Hopefully you have a supported device and a technician from your computer manufacturer can change it for you, like Dell or HP. At the same time you will be taken away your computer for a while and in worst case depending on your environment you might have to reinstall your computer.

 

The second issue is software related and can be pretty easy to solve, if you have administrator privileges.

Depending on your environment you might have to reinstall your computer after this has been changed.

Let’s say that you get a popup telling you the following:

Something went wrong

Your computer’s Trusted Platform Module has malfunctioned. If this error persists, contact your system administrator with the error code C0090016

Once the users have received this message I have made a software reset of their TPM-chip, and this usually solves the issue.

To reset the TPM, or clear it as you may say, please follow the steps below:

  1. Open the Windows Defender Security Center app.
  2. Click Device security.
  3. Click Security processor details.
  4. Click Security processor troubleshooting.
  5. Click Clear TPM.
  6. You will be prompted to restart the computer. During the restart, you might be prompted by the UEFI to press a button to confirm that you wish to clear the TPM.
  7. After the PC restarts, your TPM will be automatically prepared for use by Windows 10.

Links

https://docs.microsoft.com/en-us/windows/security/information-protection/tpm/initialize-and-configure-ownership-of-the-tpm 

 

Disclaimer: All information on this blog is offered "as is" with no warranty. It is strongly recommended that you verify all information and validate all scripts in isolated test environments before using them in production environments.