Enable BitLocker Without A TPM Chip (Password-Based Authentication)

  1. Open Edit group policy.
  2. Navigate to the following directory:
    • Computer Configuration -> Administrative templates -> Windows Components -> BitLocker Drive Encryption -> Operating System Drives
  3. Open/configure the following setting: Require additional authentication at startup. Note, do not open the one named Require additional authentication at startup (Windows Server 2008 and Windows Vista) unless you are using Windows Server 2008 or Vista.
  4. Change the option from Not Configured to Enabled.

If you try encrypting your OS drive without a TPM chip, you'll now notice you have the option to setup a password or use a drive as a passkey as well.


Check out these notes...
2023-09-17 08:29:34 Using cwm On OpenBSD
2022-08-22 00:05:08 WSL 2 Setup
2024-02-22 00:05:20 VMware Workstation Pro Keys
2024-01-07 02:54:13 On The Importance Of Encrypting VMware Workstation VMs
2024-05-28 21:50:47 VMware Workstation Download Post-Broadcom