Question:

How to handle fTPM firmware update after changing GPU and BIOS? >
> I replaced my NVIDIA 2080 Super with an AMD RX 7900XTX and updated my motherboard BIOS to the latest version. However, I encountered driver issues and a prompt to reset fTPM on boot. I have not changed my CPU and I do not use BitLocker. Can I safely reset fTPM without losing any data?

Answer:

How to handle fTPM firmware update after changing GPU and BIOS?

fTPM, or firmware-based Trusted Platform Module, is a security feature that stores encryption keys and other sensitive data on your motherboard. It is often used by BitLocker, Windows Hello, and other applications that require enhanced security. However, fTPM can also cause some issues when you change your hardware or update your BIOS, as it may detect a new configuration and prompt you to reset it. This can be confusing and potentially risky, especially if you have important data encrypted by fTPM.

In this article, we will explain what causes the fTPM prompt, how to avoid it, and how to safely reset it if needed.

The fTPM prompt usually appears when you boot your PC after changing your hardware or updating your BIOS. This is because fTPM checks the integrity of your system and compares it with the previous state. If it detects any changes, it assumes that your PC may have been tampered with and asks you to reset it. This is a security measure to prevent unauthorized access to your fTPM data.

However, sometimes the fTPM prompt can be triggered by harmless changes, such as replacing your GPU or updating your BIOS. This can happen because fTPM may not recognize the new hardware or firmware and think that they are incompatible or malicious. In this case, the fTPM prompt is a false alarm and does not indicate any real threat to your system.

How to avoid the fTPM prompt?

The best way to avoid the fTPM prompt is to disable fTPM before changing your hardware or updating your BIOS. This will prevent fTPM from checking your system and asking you to reset it. To disable fTPM, you need to access your BIOS settings and look for the option to turn off fTPM, TPM, or PTT (Platform Trust Technology). The exact location and name of this option may vary depending on your motherboard model and BIOS version, so you may need to consult your manual or online support for more details.

Once you have disabled fTPM, you can proceed to change your hardware or update your BIOS as usual. After you have completed the process, you can re-enable fTPM in the BIOS settings and reboot your PC. You should not see the fTPM prompt anymore, as fTPM will recognize your new configuration and resume its normal operation.

How to safely reset fTPM if needed?

If you have already changed your hardware or updated your BIOS without disabling fTPM, and you see the fTPM prompt on boot, you may need to reset fTPM to continue using your PC. However, before you do that, you should be aware of the consequences and risks of resetting fTPM.

Resetting fTPM will erase all the data stored on it, including your encryption keys, passwords, certificates, and other sensitive information. This means that you will lose access to any data or applications that rely on fTPM, such as BitLocker, Windows Hello, and others. You will also need to reconfigure fTPM and set up new keys and passwords for your security applications. This can be a time-consuming and complicated process, and you may need to contact your software providers or IT support for assistance.

Therefore, resetting fTPM should be your last resort, and you should only do it if you are sure that you do not have any important data or applications that depend on fTPM. If you do have such data or applications, you should try to back them up or recover them before resetting fTPM, or seek professional help if possible.

To reset fTPM, you need to follow the instructions on the screen and press the appropriate key (usually Y or N) to confirm your choice. After you reset fTPM, your PC will reboot and you will need to set up fTPM and your security applications again.

Conclusion

fTPM is a useful security feature that protects your data and system from unauthorized access. However, it can also cause some issues when you change your hardware or update your BIOS, as it may prompt you to reset it. To avoid this, you should disable fTPM before making any changes to your system, and re-enable it afterwards. If you have already triggered the fTPM prompt, you should only reset fTPM if you are sure that you do not have any important data or applications that rely on fTPM, or if you have backed them up or recovered them beforehand. Resetting fTPM will erase all the data stored on it and require you to reconfigure fTPM and your security applications.