Enabling the Trusted Platform Module

CAUTION: When a TPM is installed and enabled on the server, data access is locked if you fail to follow the proper procedures for updating the system or option firmware, replacing the system board, replacing a hard drive, or modifying OS application TPM settings.
  1. During the server startup sequence, press the F9 key to access System Utilities.
  2. From the System Utilities screen, select System Configuration > BIOS/Platform Configuration (RBSU) > Server Security.
  3. Select Trusted Platform Module Options, and press the Enter key.
  4. To set the TPM operational state:
    • If TPM 1.2 is installed, then select No Action, Enable, Disable, or Clear.
    • If TPM 2.0 is installed, then select No Action or Clear.
  5. Select Visible to set the TPM Visibility, if necessary.
  6. Press the F10 key to save your selection.
  7. When prompted to save the change in System Utilities, press the Y key.
  8. Press the ESC key to exit System Utilities. Then, press the Enter key when prompted to reboot the compute module.

    The compute module then reboots a second time without user input. During this reboot, the TPM setting becomes effective.

  9. Enable TPM functionality in the OS, such as Microsoft Windows BitLocker or measured boot.

    For more information on adjusting TPM usage in BitLocker, see the Microsoft website (http://support.microsoft.com).

For more information on the UEFI System Utilities, see the UEFI System Utilities User Guide for HPE ProLiant Gen9 and Synergy Servers in theUEFI Information Library (http://www.hpe.com/info/ProLiantUEFI/docs).