Cyber Security

What to Do If Your PC Can’t Run Windows 11 Because of TPM

by William
by William
Cyber Security Matters. Spread the Word.

Many computer owners face a common problem. Their PC can’t run Windows 11 because of TPM requirements. Microsoft introduced strict hardware requirements for its newest operating system. The Trusted Platform Module (TPM) stands as the main barrier for many users.

This guide helps IT security professionals understand TPM requirements. You’ll learn practical solutions to overcome compatibility issues. We’ll explore both official methods and alternative approaches to install Windows 11.

Our team has tested these methods during server build review processes. The strategies work for most systems with TPM limitations.

Understanding TPM and Windows 11 Requirements

What is TPM?

TPM is a security chip that protects your computer. The chip stores encryption keys and authentication data. It helps prevent unauthorised access to your system.

The module exists as either a physical chip or firmware implementation. Most computers built after 2016 include TPM 2.0 capability. Older systems might have TPM 1.2 or no TPM at all.

Microsoft requires TPM 2.0 for Windows 11 installation otherwise your PC Can’t Run Windows 11. This requirement aims to improve system security across all devices.

Windows 11 System Requirements

Windows 11 has several hardware requirements beyond TPM. Understanding these helps determine your upgrade options.

Minimum System Requirements:

Component Requirement
Processor 1 GHz or faster with 2+ cores on a compatible 64-bit processor
RAM 4 GB
Storage 64 GB
System firmware UEFI, Secure Boot capable
TPM Trusted Platform Module version 2.0
Graphics card DirectX 12 compatible with WDDM 2.0 driver
Display 720p display larger than 9″ diagonally
Internet Windows 11 Home requires internet connectivity

These requirements exceed those of Windows 10. The TPM 2.0 requirement causes the most compatibility problems.

Why Microsoft Mandates TPM for Windows 11

Microsoft implemented the TPM requirement to enhance security. Modern cyber threats require stronger protection measures. TPM helps guard against various attacks.

The module enables hardware-based security features. These include BitLocker encryption and Windows Hello authentication. TPM also supports secure boot processes and verifies system integrity.

During our network penetration testing services, we’ve seen TPM prevent credential theft. The chip stores sensitive data away from the main processor.

How to Check If Your PC Has TPM

Before attempting solutions, you need to verify your TPM status. Several methods can confirm if your computer has TPM capability.

Method 1: Using the TPM Management Console

The TPM Management Console shows detailed information about your TPM.

Step-by-step process:

  1. Press Win + R to open the Run dialog
  2. Type tpm.msc and press Enter
  3. Review the TPM status information

If TPM is present and active, you’ll see its version and status. If not, you’ll receive an error message.

Method 2: Using Device Manager

Device Manager can reveal if your computer has TPM hardware.

  1. Right-click the Start button and select Device Manager
  2. Expand “Security devices”
  3. Look for “Trusted Platform Module”

The presence of this entry indicates TPM hardware exists.

Method 3: Using the System Information Tool

The System Information tool provides comprehensive system details.

  1. Press Win + R and type msinfo32
  2. Press Enter to launch System Information
  3. Look for TPM information under “System Summary”

This method shows both TPM version and status.

Method 4: Using PowerShell

PowerShell offers a command-line approach to check TPM status.

In PowerShell type the following:
Get-TPM

This command displays detailed TPM information. Check the “TpmPresent” and “TpmReady” values.

Method 5: Using Windows 11 PC Health Check App

Microsoft provides an official tool to check Windows 11 compatibility.

  1. Download the PC Health Check app from Microsoft’s website
  2. Install and run the application
  3. Click “Check now” to perform the compatibility check

The tool identifies all compatibility issues, including TPM problems.

Solutions for PCs Without TPM 2.0

If your PC can’t run Windows 11 due to TPM requirements, you have several options. These range from hardware upgrades to registry modifications.

Solution 1: BIOS Update and TPM Activation

Many computers have TPM capability but need activation.

  1. Check your computer manufacturer’s website for BIOS updates
  2. Download and install the latest BIOS version
  3. Restart and enter BIOS settings (typically by pressing F2, F12, or Del)
  4. Look for TPM, Security Chip, or PTT (Intel Platform Trust Technology) settings
  5. Enable the TPM/Security Chip option
  6. Save settings and exit BIOS

After restarting, check if Windows now recognises TPM 2.0.

Solution 2: Add a TPM Module

Some motherboards support adding a physical TPM module.

  1. Check your motherboard manual for TPM header compatibility
  2. Purchase a compatible TPM module (usually around £15-30)
  3. Power down your computer completely
  4. Install the TPM module on the designated header
  5. Boot into BIOS and enable TPM functionality
  6. Save settings and restart

This solution works for many desktop computers with appropriate headers.

Solution 3: Bypass TPM Requirement Using Registry Edit

Microsoft provides a registry modification to bypass TPM checks. This method is unsupported but effective.

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\Setup\MoSetup]
"AllowUpgradesWithUnsupportedTPMOrCPU"=dword:00000001

Save this as bypass-tpm.reg and run it before attempting installation.

Alternatively, follow these manual steps:

  1. Press Win + R and type regedit
  2. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\Setup\MoSetup
  3. Create a new DWORD value named AllowUpgradesWithUnsupportedTPMOrCPU
  4. Set the value to 1
  5. Close Registry Editor and attempt installation

This method allows installation but may affect future updates.

Solution 4: Clean Installation with Bypass Script

For a clean installation, you can use the Rufus tool with TPM bypass.

  1. Download Rufus from the official website
  2. Insert a USB drive (8GB or larger)
  3. Launch Rufus and select your USB drive
  4. Choose a Windows 11 ISO file
  5. Select “Yes” when prompted to bypass TPM check
  6. Complete the USB creation process
  7. Boot from the USB and follow installation instructions

This creates a modified installation media that skips hardware checks.

Solution 5: Using Windows 11 Enterprise Evaluation

The Enterprise evaluation version offers more flexible requirements.

  1. Download Windows 11 Enterprise evaluation from Microsoft
  2. Create installation media using the Media Creation Tool
  3. Perform a clean installation
  4. Use the same bypass registry edit if needed

This provides a 90-day trial but can be renewed multiple times.

Assessing the Risks of Bypassing TPM Requirements

Bypassing TPM requirements carries security implications. IT security professionals should understand these risks even if your PC can’t run Windows 11.

Security Implications of TPM Bypass

Running Windows 11 without TPM 2.0 reduces system security. You lose several protection mechanisms:

  1. BitLocker may function with reduced security
  2. Windows Hello security features may be limited
  3. Some zero-day attack protections won’t function
  4. Credential Guard may be unavailable

During our work with penetration testing companies, we’ve observed higher vulnerability rates in systems without TPM.

When Bypassing Makes Sense

Despite risks, bypassing may be appropriate in certain scenarios:

  • Testing and development environments
  • Temporary installations for compatibility testing
  • Systems with compensating security controls
  • Hardware that cannot be upgraded but requires Windows 11

Always conduct a risk assessment before bypassing security requirements.

Alternative Operating System Options

If your PC Can’t Run Windows 11, consider these alternatives.

Continuing with Windows 10

Windows 10 remains a viable option. Microsoft will support it until October 2025. Extended security updates may follow for enterprise customers.

Windows 10 receives regular security updates. Most applications will remain compatible for years to come.

Linux Distributions for Security Professionals

Linux offers robust security-focused alternatives:

  1. Kali Linux – Designed for security testing and penetration
  2. Parrot OS – Security-focused with penetration testing tools
  3. Ubuntu – User-friendly with strong security features
  4. Fedora Security Lab – Purpose-built for security professionals

These distributions run on virtually any hardware. Many security tools work better on Linux platforms.

Windows 11 in Virtual Machine

Another option involves running Windows 11 inside a virtual machine:

  1. Continue using Windows 10 as your main OS
  2. Install VMware Workstation or VirtualBox
  3. Create a Windows 11 virtual machine with TPM bypassed
  4. Use Windows 11 for specific applications as needed

This provides access to Windows 11 features without full migration.

Future-Proofing Your Systems

Planning for future upgrades helps avoid compatibility problems.

Hardware Upgrade Planning

When planning new computer purchases, ensure TPM 2.0 compatibility. Look for these specifications:

  • 8th generation Intel processors or newer
  • AMD Ryzen 2000 series or newer
  • Motherboards with TPM 2.0 support
  • UEFI firmware with Secure Boot

Document TPM status during your server build review process.

Software Compatibility Planning

Develop a software compatibility strategy:

  1. Maintain an inventory of critical applications
  2. Test applications in Windows 11 environments
  3. Identify alternatives for incompatible software
  4. Schedule phased upgrades based on compatibility

Regular testing helps identify potential problems early.

FAQ About Windows 11 and TPM Requirements

What is TPM and Why Does Windows 11 Need It?

TPM (Trusted Platform Module) is a security chip that protects sensitive data. Windows 11 requires TPM 2.0 to enable advanced security features. The module stores encryption keys and verifies system integrity during boot.

Microsoft mandated TPM to protect against ransomware and firmware attacks. The chip provides hardware-based security that software solutions cannot match.

How Can I Check If My Computer Has TPM 2.0?

You can check TPM status using several methods. The simplest method uses Windows Management Console:

  1. Press Win + R and type tpm.msc
  2. Press Enter to open TPM Management Console
  3. Check if TPM is present and its version

Alternatively, use PowerShell with the command Get-TPM to view detailed information.

Can I Upgrade My Computer to Support TPM 2.0?

Many computers can be upgraded to support TPM 2.0. Desktop computers often have headers for TPM modules. Laptops typically cannot receive physical TPM upgrades.

Check your motherboard manual for TPM header information. Purchase a compatible module if available.

Some computers have TPM disabled in BIOS. Enabling it may resolve compatibility issues without hardware changes.

Is It Safe to Bypass TPM Requirements for Windows 11?

Bypassing TPM requirements reduces system security. The practice eliminates several protection mechanisms. Professional environments should avoid this approach when possible.

For testing or personal use, bypassing carries acceptable risk. Ensure you implement other security measures to compensate.

Always document systems running without TPM compliance. Schedule upgrades when budget permits.

Will Microsoft Remove the TPM Requirement in Future Updates?

Microsoft appears committed to the TPM requirement. No official statements suggest this requirement will change. The company views TPM as essential for their security vision.

Future versions of Windows will likely maintain or strengthen hardware requirements. Planning for TPM compliance represents the safest strategy.

How Long Will Windows 10 Remain Supported?

Windows 10 will receive security updates until October 14, 2025. This provides ample time to plan hardware upgrades or alternative strategies.

Enterprise customers may receive extended security updates beyond this date. These updates typically require additional licensing fees.

Further Reading

For additional information about Windows 11 and TPM requirements, consult these authoritative resources:

  1. Microsoft Windows 11 Requirements Documentation
  2. National Cyber Security Centre TPM Guidance
  3. Windows 11 Security Technical Documentation
  4. Trusted Computing Group TPM Standards

Glossary of Technical Terms

Term Definition
TPM Trusted Platform Module – A hardware chip or firmware implementation that stores encryption keys and authentication data
UEFI Unified Extensible Firmware Interface – A modern replacement for BIOS that supports more security features
Secure Boot A security standard that ensures only trusted software loads during startup
BitLocker Microsoft’s disk encryption technology that uses TPM to store encryption keys
PTT Platform Trust Technology – Intel’s firmware implementation of TPM
AMD fTPM AMD’s firmware TPM implementation found on modern AMD processors

How Aardwolf Security Can Help Businesses

Is your business struggling with Windows 11 compatibility and security implications? Aardwolf Security provides expert guidance on secure system upgrades exclusively for business clients.

Our network penetration testing services identify vulnerabilities in both Windows 10 and Windows 11 environments. We help organisations develop secure migration strategies for their business systems.

Aardwolf’s experienced consultants can help your business:

  • Assess your company’s hardware fleet for Windows 11 compatibility
  • Identify security gaps in corporate systems running with bypassed requirements
  • Recommend compensating controls for non-compliant business systems
  • Develop phased migration plans that balance security and business operational needs

As trusted penetration testing companies, we understand the security implications of operating system choices in business environments.

Contact our team today for personalised guidance on Windows 11 migration for your business. Reach out to Aardwolf Security for a business consultation.


Cyber Security Matters. Spread the Word.

William is a seasoned cybersecurity professional with over a decade of experience in the realm of penetration testing. Having conducted hundreds of penetration tests for a diverse range of industries, Wiliam's expertise lies in identifying vulnerabilities and fortifying defences before they can be exploited by malicious actors. His meticulous approach to each penetration test ensures that clients receive comprehensive insights into their security posture, allowing them to make informed decisions about safeguarding their digital assets. Passionate about staying ahead of the ever-evolving threat landscape, William continuously updates his skills and methodologies to ensure that every penetration test he conducts meets the highest standards of thoroughness and accuracy. His dedication to the craft has not only protected countless organisations from potential breaches but has also solidified his reputation as a senior expert in penetration testing.

You may also like

M&S Data Breach Exposes Customer Information

IP Camera Penetration Testing

How to Disable OneDrive in Windows

Wireless Security Myths

How to Set Up Windows 11 for Maximum Privacy

What is the Best OS for Penetration Testing?

The Human Weakness Behind Social Engineering Attacks

What is HTTP Request Smuggling

The Evolution of Web App Security Over The Past 20 Years

4chan Hack: The Devastating 2025 Data Breach