Enabling TPM 2.0 and Secure Boot for Optimal PC Gaming on Windows 10

Enabling TPM 2.0 and Secure Boot for Optimal PC Gaming on Windows 10

Enable TPM 2.0 and Secure Boot for Modern Gaming on Windows 10

To fully enjoy the latest releases like Call of Duty: Black Ops 7 and Battlefield 6 on your Windows 10 gaming setup, it’s crucial to enable both Trusted Platform Module (TPM) 2.0 and Secure Boot. These features are mandatory due to anti-cheat protocols implemented in contemporary gaming titles. Failing to activate these components may lead to errors such as “Secure Boot is not enabled” or similar notifications.

In the sections that follow, I will guide you through the necessary steps to configure your system correctly.

Understanding TPM and Secure Boot

TPM, often built directly into the motherboard, offers a secure environment for storing encryption keys, vital for features like BitLocker that protect your hard drive. Conversely, Secure Boot is a UEFI security feature that permits only trusted software to load during system startup, thus defending against boot-level malware, including various forms of game cheating software.

In some cases, older hardware or non-Windows operating systems may experience complications when Secure Boot is enabled. For those circumstances, it may be necessary to disable Secure Boot temporarily, but generally, keeping it enabled is advised for optimum security.

Let’s walk through the process to enable TPM 2.0 and Secure Boot on your Windows 10 machine.

Enabling TPM 2.0 and Secure Boot on UEFI Systems

Enabling these features on Windows 10 can be slightly complex due to the existence of both UEFI and legacy BIOS firmware types. If your system is running on legacy BIOS, additional steps are required to switch to UEFI before activating Secure Boot.

Step 1: Verify Secure Boot Availability

Use the following steps to confirm if your Windows 10 device is utilizing UEFI and Secure Boot:

  1. Open Start.
  2. Type System Information and select the app from the results.
  3. Select System Summary in the left pane.
  4. Locate the BIOS Mode entry; it should read UEFI. If it states Legacy, then your system is operating under BIOS, which does not support Secure Boot.
  5. Check the Secure Boot State entry; it should show as On. If not, manual activation is required.
System Information Secure Boot info

If your system uses UEFI, you can proceed to enable Secure Boot. If it’s on legacy BIOS, you’ll need to convert your disk from MBR to GPT before switching firmware and activating Secure Boot.

Step 2: Confirm TPM 2.0 Presence

To check if TPM is enabled, follow these steps:

  1. Open Start.
  2. Search for tpm.msc and open the Trusted Platform Module Management tool.
  3. In the Status and TPM Manufacturer Information sections, confirm the presence of TPM and its version.
Trusted Platform Module Management console

If a TPM chip is detected, relevant information and status should be visible. If it states “Compatible TPM cannot be found, ” either the chip is disabled or not present.

Step 3: Activate TPM 2.0 and Secure Boot in UEFI

If everything checks out, you can proceed to enable TPM 2.0 and Secure Boot with the following steps:

  1. Navigate to Settings.
  2. Click on Update & Security.
  3. Select the Recovery option.
  4. Under “Advanced startup, ” click the Restart now button.
  5. After your PC restarts, click Troubleshoot.
  6. Select Advanced options.
  7. Choose the UEFI Firmware Settings option.
  8. Click the Restart button again.
  9. Within the UEFI menu, navigate to the advanced, security, or boot settings page.
  10. Find and enable Secure Boot.
  11. Locate the TPM 2.0 feature and enable it.

Once completed, your PC should be enabled to play the latest titles smoothly.

In instances where the motherboard lacks a TPM chip, especially in AMD systems, the module may be integrated into the processor, referred to as fTPM (firmware-based TPM 2.0). For Intel systems, TPM 2.0 may be available as Platform Trust Technology (PTT).

Enabling TPM 2.0 and Secure Boot on Legacy BIOS

If your system uses legacy BIOS, the first step is converting the drive from MBR to GPT format to allow a switch to UEFI and subsequently enable TPM 2.0 and Secure Boot.

Note that after converting to GPT, your computer will not boot unless you switch to UEFI. It’s advisable to check your computer’s manufacturer website to ensure firmware switching is supported.

Step 1: Identify Your Drive’s Partition Style

To determine your drive’s partition style, perform the following:

  1. Open Start.
  2. Type Disk Management and select the app from the results.
  3. Right-click on the disk (not the partition) and choose Properties.
  4. Go to the Volumes tab.
  5. Check the Partition style field; it should indicate either Master Boot Record (MBR) or GUID Partition Table (GPT).
Check MBR or GPT

Confirming your partition style is crucial as GPT isn’t typically usable on legacy BIOS systems. If your device is using legacy firmware, MBR is likely the current configuration.

Step 2: Convert MBR to GPT

To convert your drive from MBR to GPT, follow these instructions:

  1. Open Settings.
  2. Click Update & Security.
  3. Navigate to Recovery.
  4. Under “Advanced startup, ” hit Restart now.
  5. Select Troubleshoot.
  6. Click Advanced options.
  7. Choose Command Prompt.
Command Prompt option
  1. Sign in with your administrator account if prompted.
  2. Enter the following command to validate if the drive can be converted, and press Enter: mbr2gpt /validate
  4. Enter this command to perform the conversion from MBR to GPT and press Enter: mbr2gpt /convert
  6. Type exit and press Enter to finish.
  7. Power off the PC.

The mbr2gpt tool will only convert the specified system drive unless otherwise instructed.

Step 3: Switching from BIOS to UEFI

To transition from BIOS to UEFI, follow these steps:

  1. Boot your PC to the firmware settings by powering it on.
    2. Tip: Accessing firmware settings varies by manufacturer and model; generally, you can do so by pressing Delete, Esc, or the Function keys during boot.
  2. Locate the boot sequence, advanced, or boot settings page, based on your motherboard.
  3. Disable legacy BIOS and enable UEFI mode.
  4. Save the changes and exit.

After completing these steps, you will need to enable Secure Boot within UEFI settings.

Step 4: Enable Secure Boot in UEFI

To activate Secure Boot in UEFI for your Windows 10 system, proceed with the following:

  1. Reboot into UEFI settings.
  2. Navigate to the advanced, security, or boot options page, depending on your board.
  3. Locate the “Secure Boot” option and enable it.
  5. Enable the TPM 2.0 option as well.
  6. Save and exit.
  7. Restart the computer.

Following these steps will enable TPM 2.0 and Secure Boot, allowing you to meet the necessary anti-cheat prerequisites for gaming on Windows 10.

Source & Images

Related Articles:

YouTube Proposes Reinstating ESPN Following 24% Subscriber Cancellation Threats
Starbucks Addresses Bearista Cup Issues Amid eBay Resale Prices Surging to $360

Leave a Reply

Your email address will not be published. Required fields are marked *