This device cannot use an error in the Trusted Platform module that starts the BitLocker when BitLocker starts (1).

RECOMMENDED: Click here to fix Windows errors and optimize system performance

BitLocker is a necessary device to encrypt Windows computers and prevent unauthorized access. Sometimes, however, unnecessary problems with the system can occur. Many users have reported the following error when trying to enable BitLocker:

This device cannot use a trusted platform module. Your administrator must set the Allow BitLocker without TPM compatible option in the additional authentication policy required at operating system startup.

This device cannot use a trusted platform module

February 2021 Update:

We now recommend using this tool for your error. Additionally, this tool fixes common computer errors, protects you against file loss, malware, hardware failures and optimizes your PC for maximum performance. You can fix your PC problems quickly and prevent others from happening with this software:

  • Step 1 : Download PC Repair & Optimizer Tool (Windows 10, 8, 7, XP, Vista – Microsoft Gold Certified).
  • Step 2 : Click “Start Scan” to find Windows registry issues that could be causing PC problems.
  • Step 3 : Click “Repair All” to fix all issues.



If we carefully determine this error, it is rather a statement. However, to better understand the meaning of the terms used in the error message.

  1. Trusted Platform Module : The TPM is a chip generally found in newer systems. It stores the BitLocker key. If the key does not exist in the system, it can be stored on a USB key.
  2. Administration policy : This is the group policy that is defined by the systems managed by the servers. However, what is interesting about the error is that it was reported on the general user systems and not on the company systems.

Here are two suggestions that may help you.

1] Allow b>BitLocker b> without TPM

Now that we have understood the error, the correction is exactly as mentioned in the explanation.

Press Win + R to open the Run window and type gpedit.msc and press Enter to open the Group Policy Editor.

Expand the folders in the following order: Computer Configuration > Administrative Templates > Windows Components > BitLocker Drive Encryption > Operating System Drives.

In the list of options on the right side of the window, find the option b>b>Require additional authentication at startup. Double-click to open the preferences window.

The default setting is Not configured . Change it to Enabled.

If you set the radio button to on, it automatically checks the Allow BitLocker option without TPM compatible. If this is not the case, please check the box before continuing.

Click Apply, then click OK to save the settings.

Now open the Control Panel and click the Turn on Turn on b>BitLocker option. It requires administrator access.

See if it helped.

2] Delete TPM

If you want to continue using the TPM and are sure that your system has the device as part of the hardware, you can try deleting the TPM. The procedure is as follows:

Deleting TPMs can affect system data, so please save your data before proceeding.

Press Win + R to open the Run window. Then type the command tpm.msc and press Enter. The TPM window opens.

Under Actions tab, click Delete TPM and reboot the system.

When TPM is disabled, you will find an option to TPM initialize sub Actions Actions tab. Click this option and reboot the system.

If the TPM has never been initialized, a wizard prompts you to configure the TPM using the Turn on the TPM security hardware dialog box. Follow the steps in the wizard, and once the TPM is set, reboot the system.

Let’s hope something helps.

RECOMMENDED: Click here to troubleshoot Windows errors and optimize system performance

Related Video