I am trying to enable the TPM for Bitlocker through an SCCM Task Sequence, using the HP BIOS Utility (within the Windows 7 OS). I have collected the known settings of the BIOS with the /GetConfig switch. The problem it seems, is that there are 2 entries for "Embedded Security Device". One is under "Device Security" (Device Available/Device Hidden), the other is under "System Security" "Embedded Security Device" (Disabled/Enabled). Without the System Security - Embedded Security Device being "Enabled", Bitlocker will not encrypt. And the HP BIOS Utility will not acknowldge the System Security Embedded Security Device. Any insight would be most appreocated. Thank you!