I am unable to do a firmware update of the TPM on an HP ProBook 640 G1 (K4L16UT#ABA).
The update asks for the TPM ownership password to proceed because it is not stored on the system. The password is not available on Windows Build 1803. I have followed the steps to clear the TPM provided in the HP TPM Firmware Update by:
changing the registry key to store the TPM password
Using the TPM.msc manager to attempt to clear the TPM
Attempting to clear the TPM results in the following error message:
"Physical Presence Cmd Blocked by BIOS. Error Code #0x80290304"
There seems no option in the BIOS to do anything with the TPM. I updated to the latest BIOS but it offers no additional options for the TPM.
The TPM seems to be working fine and is reported as ready for action. It just has the security vulnerability that the FW update is supposed to fix.
How do I clear the TPM?
I created a BIOS Admin User with Password. This gave me access to hidden TPM settings that I used to clear the TPM through the BIOS on restart.
Resetting the BIOS to Factory Securtiy Settings would probably have achieved the same effect.
You still need to change the registry key for the TPM before you clear it through the BIOS so that the newly generated password is stored in the registry. Instructions for editing the registry are in the support document with the Firmware Update.