Menu

How to Clear TPM in Windows 10/11 and why to do it.

In this guide, we will discuss how to Clear and manage TPM on Windows 10 and explain why and when to do so.

Trusted Platform Module (TPM) technology is used to provide hardware-based security for modern computers and laptops. A TPM Chip enhances computer security and is used by services such as BitLocker disk encryption and Windows Hello to generate and store cryptographic keys to protect your system and data from hacks or malware.

Starting from Windows 10 and Windows 11, the operating system automatically initializes and takes ownership of the TPM so you don't need to do anything extra about it. But because in some cases you may need to Clear the TPM keys, this guide will give you instructions on how to do so.

Why and when to clean the TPM?

Clearing the TPM involves resetting the security keys and deleting all the data stored on the TPM chip. Deleting the TPM keys should be done when you encounter problems with the TPM or when you want to perform a clean Windows installation.

Here are some reasons why you may need to clear the TPM:

  • TPM troubleshooting: e.g. you receive the error "TPM is ready for use, with reduced functionality" in TPM Management console. (tpm.msc)
  • Installation of a new operating system: Before installing a new operating system, TPM cleanup will ensure that the new operating system can fully use any necessary TPM-based functionality.
  • Clean Installation/Computer Reset: When you want to perform a clean installation or resetting your PC to its factory settings, especially when you want to sell your PC to someone else.
  • Authentication & Encryption issues: If you are experiencing authentication issues with Windows Hello or encryption problems in BitLocker, clearing the TPM can help resolve them.

How to Clear TPM Keys in Windows 10/11.

Precautions:

Clearing the TPM chip restores it to a non-proprietary state by deleting the security keys, and forces the Windows operating system to automatically restart it and take ownership of it again. Before clearing the TMP by using the methods below please consider the following:

1. Clearing the TMP chip can result in data loss, so before proceeding, backup any data that protected or encrypted by the TPM (e.g. with BitLocker), to an external storage device (e.g. a USB Hard Drive).

2. Don't clear the TPM on a device you don't own, such as a work or school PC, without being instructed to do so by your IT administrator

3. Always clear the TPM from within the operating system (e.g. by using the "tpm.msc" console), and not directly from UEFI.

4. Because your TPM security hardware is a physical part of your computer, before clearing the TPM, you might want to read the manuals or instructions that came with your computer, or search the manufacturer's website.

 

Method 1: Clear TPM keys using TPM Management Console.

The first way to reset the TPM keys, is by using the Trusted Platform Module Management Console (aka "tpm.msc"). TO do that:

1. Press Windows image + R keys to open the run command box.

2. In the run command box, type: tpm.msc and hit Enter or click "OK" to open the Trusted Platform Module Management console.

tpm.msc

 

3. In the TPM Management console, click "Clear TPM…" on the "Actions" menu.

How to clear TPM keys

4. Choose "Restart," and then follow the on-screen instructions to complete the process. *

* Note: During the restart, you might be prompted by the UEFI to press a button to confirm that you wish to clear the TPM.

How to clear TPM in Windows 10/11 and why to do it.

Method 2: Clean TPM from Windows Defender Security Center.

The second method to clear the TMP keys, is through the Windows Defender Security Center.

1. On search box, type "Device Security" and then click to open the "Device Security" app.

Clear TPM - Windows Defender Device Security

 

2. Click on "Security processor details" under "Security Processor".

Clear TPM Device Security

 

3. Then click Security processor troubleshooting.

Delete TPM Keys

 

4. Now, in the "Clear TPM" section, click on Select and choose any of the reasons to clear the TPM. Then click the "Clear TPM" button below.

Reset TPM Keys

 

5. Finally, click Clear and Restart, and follow the steps on the screen to finish the process.*

* Note: During the restart, you might be prompted by the UEFI to press a button to confirm that you wish to clear the TPM.

How to Clear TPM on Windows 10/11

When your computer restarts, Windows will automatically re-initialize the TPM and take ownership of it.

 

Method 3: Clear TPM through PowerShell.

1. On search box, type "powershell".
2. Click on Run as Administrator at Windows PowerShell app.

Clear TPM keys from PowerShell

 

2. Enter the following cmdlet "clear-tpm" in PowerShell and then restart to clear the TPM. *

Delete TPM keys from PowerShell

* Note: The above command ("clear-tpm") resets the TPM by using the owner authorization value stored in the registry instead of specifying a value or using a value in a file. If you face an error after running the above command try one of the other methods or use the following command:

  • Initialize-Tpm -AllowClear $true

That's it! Which method worked for you?
Let me know if this guide has helped you by leaving your comment about your experience. Please like and share this guide to help others.

Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *