I have a Surface Pro 6. One day my computer got locked with Bitlocker (for no apparent reason). After recovering the key I disabled device encryption and decrypted my hard drive.
If I now do “manage-bde -status”, I get this information:
However, this seemed to have disabled my TPM. When I boot into UEFI, the TPM option is disabled, and when trying to enable it I get a message saying failed to enable TPU, restart the device and try again (or something similar). Disabling Secure boot does not help (I tried enabling TPM with secure boot on and off).
I learned that this could be an issue related to BitLocker. In efforts to enable TPM I followed instructions which told me to pause Bitlocker, but that command gave me an error:
I have another surface pro which has Bitlocker encryption enabled, and the TPM is enabled (as by default).
From this, I have a few questions:
- Are the issues between decrypting my drive and being unable to turn on TPM related?
- Should re-encrypting my drive with BitLocker allow me to enable TPM from UEFI?
- What is the best way to re-encrypt my drive (I only have C:)?
Thank you.
