Further to my notes on TPM above:
My (reasonably recent) motherboard does not have a TPM installed, but does have a header to which one could be fitted. Normally, I'd be able to get one for <£10, but the scalpers have bought them all up in anticipation of the demand.
However, as I also noted, a good few machines have the TPM capability, but simply have it disabled in BIOS. As I read more, it became apparent that a large number of current CPUs (not motherboards) have the TPM capability in firmware (and again, this might or might not be enabled; Bios will indicate).
I've just successfully enabled mine (in an AMD processor) through BIOS settings - one step closer to Win11 compatibility (not that I'm going to be desperate to update).
One warning about using a firmware CPU-embedded TPM is that, if you use Bitlocker for encryption, the key will be held in the CPU (not a motherboard TPM) and changing the CPU will lose all your access to bitlocked files. (I don't think that will be an issue for most home users).
|