Guidelines
Are you having HotKey issues? Click here for tips and tricks.
Check out our WINDOWS 11 Support Center info about: OPTIMIZATION, KNOWN ISSUES, FAQs, VIDEOS AND MORE.
Locked

‎12-12-2023 11:12 AM

HP Recommended
Operating System: Microsoft Windows 11

Hi all,

Using HP CMSL Powershell Scripts, I'm trying to enable and set TPM BIOS settings remotely on HP devices in my company.

need to confirm the below setting will handle all required settings to enable and manage the TPM through OS Silently without user interaction. and make sure nothing is ignored so we can deploy BitLocker on the machines.

HP models like :
HP EliteDesk 800 G1 TWR, HP EliteDesk 800 G3 TWR, HP EliteDesk 800 G6 Tower PC, HP ProBook 450 G8 Notebook PC, HP ProDesk 400 G4 MT, HP ProDesk 400 G5 MT, HP ProDesk 600 G6 Microtower PC, HP Z1 Entry Tower G6.

 

I have reached to the below setting to configure: 

# Define an array of BIOS settings "HP EliteDesk 800 G1 TWR"
$BIOSSettings = @(
    [PSCustomObject]@{ Name = "Embedded Security Device"; Value = "Device available" },
    [PSCustomObject]@{ Name = "Activate Embedded Security On Next Boot"; Value = "Enable" },
    [PSCustomObject]@{ Name = "Embedded Security Activation Policy"; Value = "No prompts" },
    [PSCustomObject]@{ Name = "OS management of Embedded Security Device"; Value = "Enable" },
    [PSCustomObject]@{ Name = "Reset of Embedded Security Device through OS"; Value = "Enable" },
    [PSCustomObject]@{ Name = "Tpm No PPI provisioning"; Value = "Disable" },
    [PSCustomObject]@{ Name = "Tpm No PPI maintenance"; Value = "Disable" }
)

# Define an array of BIOS settings "HP EliteDesk 800 G3 TWR" , "HP Z1 Entry Tower G6", "HP ProBook 450 G8 Notebook PC"
$BIOSSettings = @(
    [PSCustomObject]@{ Name = "TPM Device"; Value = "Available" },
    [PSCustomObject]@{ Name = "TPM State"; Value = "Enable" },
    [PSCustomObject]@{ Name = "TPM Activation Policy"; Value = "No prompts" },
    [PSCustomObject]@{ Name = "Clear TPM"; Value = "No" },
    [PSCustomObject]@{ Name = "Physical Presence Interface"; Value = "Enable" }
)
Category:
Recommendations
Warning
Be alert for scammers posting fake support phone numbers and/or email addresses on the community.
If you think you have received a fake HP Support message, please report it to us by clicking on "Flag Post".
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.
Didn't find what you were looking for? Ask the community
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the <a href="https://www8.hp.com/us/en/terms-of-use.html" class="udrlinesmall">Terms of Use</a> and <a href="/t5/custom/page/page-id/hp.rulespage" class="udrlinesmall"> Rules of Participation</a>.