Trusted Platform Module

Applies to

  • Windows 10
  • Windows Server 2016

Trusted Platform Module (TPM) technology is designed to provide hardware-based, security-related functions. A TPM chip is a secure crypto-processor that helps you with actions such as generating, storing, and limiting the use of cryptographic keys. The following topics provide details.

Topic Description
Trusted Platform Module Overview Provides an overview of the Trusted Platform Module (TPM) and how Windows uses it for access control and authentication.
TPM fundamentals Provides background about how a TPM can work with cryptographic keys. Also describes technologies that work with the TPM, such as TPM-based virtual smart cards.
TPM Group Policy settings Describes TPM services that can be controlled centrally by using Group Policy settings.
Back up the TPM recovery information to AD DS For Windows 10, version 1511 and Windows 10, version 1507 only, describes how to back up a computer’s TPM information to Active Directory Domain Services.
Troubleshoot the TPM Describes actions you can take through the TPM snap-in, TPM.msc: view TPM status, troubleshoot TPM initialization, and clear keys from the TPM. Also, for TPM 1.2 and Windows 10, version 1507 or 1511, describes how to turn the TPM on or off.
Understanding PCR banks on TPM 2.0 devices Provides background about what happens when you switch PCR banks on TPM 2.0 devices.
TPM recommendations Discusses aspects of TPMs such as the difference between TPM 1.2 and 2.0, and the Windows 10 features for which a TPM is required or recommended.