Intel® NUCs
Assistance in Intel® NUC products
Announcements
The Intel sign-in experience has changed to support enhanced security controls. If you sign in, click here for more information.
12944 Discussions

NUC 8i7HVK BIOS Breaks Bitlocker

RSaun1
Beginner
‎07-02-2018 09:57 AM
2,019 Views

I recently updated my BIOS to 0044, and since the update my Bitlocker no longer functions and I have to enter a recovery key on each boot.

I have since suspended Bitlocker as per Technet forums (suspend and resume to fix bootup issues), and I cannot resume with the error "A compatible Trusted Platform Module (TPM) Security Device cannot be found on this computer".

Please help!

0 Kudos

Link Copied

6 Replies
RSaun1
Beginner
‎07-02-2018 10:37 AM
465 Views

To give a bit more on troubleshooting steps, I've tried disabling and enabling PTT, and have restored defaults after flashing. Still no joy.

Rolling back to 0040 now.

0 Kudos
Copy link
RSaun1
Beginner
‎07-02-2018 10:44 AM
465 Views

Rollback to 0040 has worked, Bitlocker functioning correctly.

0 Kudos
Copy link
idata
Employee
‎07-02-2018 03:27 PM
465 Views
In response to RSaun1

Hello saundersrg,

 

 

Thank you for joining the Intel Community Support and reporting this issue back to us.

 

 

I understand that you were having some issues after performing a BIOS update in your unit. Let me help you.

 

 

As a workaround, it is recommended to revert back to the previous BIOS version available (0040) as some issues are being reported. In the meantime, we will continue investigating this issue further.

 

 

Wanner G.
In response to RSaun1
Copy link
BSaun
Novice
‎07-04-2018 10:00 AM
465 Views

Did you try disabling bitlocker before doing the BIOS update? Also, not sure if UEFI boot needs to be off for bitlocker, I would consider resetting BIOS defaults as well. My experience has been that bitlocker is very sensitive to system changes, and after turned on, almost any hardware change causes it to ask forr key thinking system has been tampered with.

0 Kudos
Copy link
RSaun1
Beginner
‎07-04-2018 10:22 PM
465 Views
In response to BSaun

No, shouldn't need to disable for a BIOS update if you have the recovery keys . UEFI doesn't need to be off either. What should happen (as per MS) is if there are consistent warning messages and needing your recovery key, you suspend and resume protection after entering it. This re-saves the keys. However in BIOS 0044 it seems that the TPM/PTT seems to break and not be recognised by Windows anymore (did try restore defaults too).

Bitlocker is sensitive, but it's robust once things are re-saved, been using it for years. BIOS 0040 works 100% again, I didn't even need to suspend/resume after the downgrade.

In response to BSaun
0 Kudos
Copy link
BSaun
Novice
‎07-10-2018 08:59 AM
465 Views
In response to RSaun1

Saunders RS,

thanks for for that info- bitlocker has always seemed to be a black box for me- don't understand it ver well, but glad it's there, until it develops " issues".

In response to RSaun1
0 Kudos
Copy link
Reply

For more complete information about compiler optimizations, see our Optimization Notice.