|
TPM 2.0 support and Windows 11 (intel) |
Post Reply 
|
Page 123 5> |
| Author | |||
Xaltar 
Moderator Group 
Joined: 16 May 2015 Location: Europe Status: Offline Points: 34508 |
 Post Options
 Thanks(0)
 Quote Reply
 Topic: TPM 2.0 support and Windows 11 (intel)Posted: Yesterday at 4:03am |
||
|
Thanks for sharing the info spare.time. I was pretty sure that would be the case
but I didn't have a definitive answer to give as I had not asked my sources at ASRock yet. |
|||
|
|||
 |
|||
|
spare.time
Newbie 
Joined: 23 Jun 2022 Status: Offline Points: 65 |
Post Options
Thanks(0)
Quote Reply
Posted: Yesterday at 3:32am |
||
|
Looks like AsRock update the 'Description' for version 21.01 to show it include the keys!
|
|||
|
|||
|
spare.time
Newbie
Joined: 23 Jun 2022 Status: Offline Points: 65 |
Post Options
Thanks(0)
Quote Reply
Posted: 15 Feb 2026 at 5:09am |
||
|
Which Z690 Pro RS BIOS has the updated Microsoft Secure Boot certificates?
https://www.asrock.com/mb/Intel/Z690%20Pro%20RS/index.asp#BIOS None of the descriptions make note up update certificates. For reference article on the June 2026 deadline: https://arstechnica.com/gadgets/2026/02/microsoft-sounds-the-alarm-about-secure-boot-certificates-expiring-later-this-year/ |
|||
|
|||
|
jawrob11
Newbie
Joined: 04 Jan 2026 Status: Offline Points: 30 |
Post Options
Thanks(0)
Quote Reply
Posted: 05 Jan 2026 at 12:42am |
||
|
No problem :) Thank You for quick answer - have to switch my PC to new one, but not now (DDR5 prices :( ).
|
|||
|
|||
|
Xaltar
Moderator Group
Joined: 16 May 2015 Location: Europe Status: Offline Points: 34508 |
Post Options
Thanks(0)
Quote Reply
Posted: 05 Jan 2026 at 12:36am |
||
|
Hi and welcome to the forums jawrob11, according to this article, ASRock intel 100
series boards do support TPM 2.0 and CSM depending on the CPU used. However compatible CPUs begin with 8th gen CPUs meaning no, it isn't supported. The board itself does but the board is not compatible with 8th gen CPUs so it can't use it. I suspect it's because 100/200 and 300 series chipsets are almost identical so the support is there but the CPU support is not. Simple answer, officially, no. The 100 series boards are not properly supported under Windows 11. I personally find this ridiculous but this comes from Intel and Microsoft not ASRock. This is why I personally use linux and have dropped Windows on all but one of my systems. This does not mean it won't work but it does mean that any workaround you use could suddenly stop working with a windows update. Sorry to be the bearer of bad news. |
|||
|
|
|||
|
|||
|
jawrob11
Newbie
Joined: 04 Jan 2026 Status: Offline Points: 30 |
Post Options
Thanks(0)
Quote Reply
Posted: 05 Jan 2026 at 12:00am |
||
|
Hello!
I have z170 extreme4. Is this mobo support security boot and TMP 2.0? |
|||
|
|||
|
Xaltar
Moderator Group
Joined: 16 May 2015 Location: Europe Status: Offline Points: 34508 |
Post Options
Thanks(0)
Quote Reply
Posted: 07 Dec 2025 at 12:05am |
||
|
Sorry to hear that. Unfortunately I highly doubt you would get any help from any
manufacturer with this issue. Manufacturers are obligated contractually to uphold a number of rules imposed by their partners (intel, AMD, Microsoft, Nvidia etc). This means that if one of their partners insists that they do not want hardware older than a certain generation to have a particular functionality then the manufacturer must comply or risk losing licencing for their products. Chipsets from Intel/AMD, certifications from Microsoft etc. This is why I run linux on my perfectly functional older systems and only have a single PC running windows. Even then, I run Windows 10 because I refuse to be locked to the whims of Microsoft. As soon as Linux catches up with regards to software that I use I will make the switch completely and never look at Microsoft again. My Z97 Extreme 3 paired with an i7 4790k and a Radeon RX 590 still runs perfectly and handles most games with ease (at least ones supported under linux). I did see someone looking into this on Redit some time back, they were Russian I believe, but there doesn't seem to be any progress for some years now. |
|||
|
|
|||
|
|||
|
BlahBG
Newbie
Joined: 04 Oct 2025 Status: Offline Points: 75 |
Post Options
Thanks(0)
Quote Reply
Posted: 06 Dec 2025 at 8:19pm |
||
|
I didn't achieve anything meaningful. I tried everything I could find on the internet.
I even took it to a repair shop - they couldn't fix it either. I tried the last-resort method: reprogramming the BIOS chip with a hardware programmer - no success. The solution: I threw away a fully working PC and basically sold my kidney to buy a new PC. Good luck to anyone still trying. If you find another solution, please share it..... |
|||
|
|||
|
BlahBG
Newbie
Joined: 04 Oct 2025 Status: Offline Points: 75 |
Post Options
Thanks(1)
Quote Reply
Posted: 31 Oct 2025 at 3:17am |
||
|
Despite everything, I decided to take the risk and ordered a TPM 2.0 module for $15, just to see what would happen. I checked the manual and the module's pins in advance to make sure it matches the TPM header on the board (17-pin TPMS1).
The module arrived a week ago, but it doesn't start as expected. Windows 10 doesn't detect it either. Since the board has two BIOS chips, I decided to risk modifying the first one and keep the second as a backup in case something goes seriously wrong. Since then, I've read even more threads (even on other motherboard brands), watched many YouTube videos on BIOS modding, and realized an external programmer is needed. By chance, I have one (CH341A ??I used it years ago for a camera ROM, but it didn't work). I also sought help from AI. Before making any BIOS modifications, I contacted the seller and ASRock support. Correspondence with the seller: (I explained the situation and provided board details.) Seller: "Hello, the supplier has replied that your computer version is too low to function properly" Me: "Let me know which versions it runs on then since you refuse to provide me with drivers." Seller: "I'm sorry for the inconvenience. The TPM 2.0 module you purchased is designed to work with motherboards that support TPM 2.0 technology. It seems that your current BIOS version may not support TPM 2.0, as the supplier mentioned that the computer version is too low. I recommend checking the ASRock official website for any BIOS updates that might enable TPM 2.0 support for your motherboard. If you have already done so and the issue persists, it might be necessary to consult directly with ASRock support for further assistance on BIOS modifications or compatibility." Meanwhile, I also wrote to ASRock. Their response: "The Intel Z97 chipset does not natively support TPM 2.0. Therefore, please use a TPM 1.2 module instead. If your application requires TPM 2.0 functionality, please consider upgrading to a newer generation motherboard. https://www.asrock.com/mb/index.asp" -------------------------- In short, they weren't helpful and recommended a new PC, but I haven't given up. That's why I'm continuing the thread with a request for additional help from you. I'm available if you need more info: what I've tried so far, tools used, BIOS version, TPM module details, BIOS chip and other details... P.S. I wanted to write about how I managed to solve the issue to help others in my situation who don't want to throw away a perfectly working PC. So far, I've only achieved this: when I plug in the module, the TPM 1.2 menu appears in BIOS. The module is detected, but the BIOS doesn't know how to communicate with it as TPM 2.0. Sorry if I used any wrong terms ??this is my first time doing something like this. |
|||
|
|||
|
BlahBG
Newbie
Joined: 04 Oct 2025 Status: Offline Points: 75 |
Post Options
Thanks(0)
Quote Reply
Posted: 09 Oct 2025 at 7:59pm |
||
|
Hello!
Apologies for the late reply, but thank you for the follow-up questions. They are very important and address the key details.
1. Regarding the External TPM 2.0 Module and the TPM Header You are correct: TPM 2.0 is not backward compatible with TPM 1.2. We are not trying to upgrade an old 1.2 chip, but rather to install a new TPM 2.0 module into the motherboard's TPM Header. Hardware Compatibility (The Port): According to the ASRock Fatal1ty Z97X Killer Manual (page 32), our motherboard has a 17-pin TPM Header (connector 18). This port is physically compatible with the corresponding TPM modules. The manual I used: https://download.asrock.com/Manual/Fatal1ty%20Z97X%20Killer.pdf Software Problem (The BIOS): The issue is that the stock BIOS on the Z97X Killer lacks the necessary code to recognize, initialize, and pass control of this modern TPM 2.0 module to the operating system (Windows 11). This is why we are looking for a Custom or Beta BIOS. The goal of these modifications is to add the missing code to the BIOS (often through corrections in the ACPI/DSDT tables) to enable communication and activation of the external TPM 2.0 module.
2. Regarding fTPM (Firmware-based TPM) and the Z97 Chipset This is where the limitations of the Z97 chipset (H97, Z87, H87, etc.) come into play. Definition: fTPM (Firmware/Platform Trust Technology, PTT on Intel) is a function that allows the processor?™s firmware to execute TPM functions. On Intel, this is built into the CPUs and activated via the BIOS. Z97 Limitation: You are right fTPM/PTT (TPM 2.0), as we know it for Windows 11, only became widely available and standard with the Intel 100-series chipsets (Skylake) and newer. Our Z97 platform (Haswell/Devil's Canyon) precedes this. Z97 Conclusion: This means that on our ASRock Z97X Killer, we cannot enable TPM 2.0 with a BIOS update alone because this functionality is not built into our processors (Haswell). Therefore, our only path to TPM 2.0 is through an external hardware module (dTPM), plugged into the dedicated TPM Header, which I mentioned in point 1. 3. Why it Works on Other Z97 Boards (and why our search is justified) The fact that other manufacturers, or even ASRock for other Z97 models, have provided BIOS versions with support for external TPM 2.0 modules is the key argument. The Principle: Hardware-wise, an external TPM 2.0 module does not depend on the chipset (Z97), but on the BIOS's ability to recognize and initialize it. Requirement: Microsoft's only requirement is an active TPM 2.0 module (hardware or firmware) in the system. Conclusion: If the manufacturer (ASRock) provides a BIOS with the correct code (corrected ACPI/DSDT tables) for our Z97X Killer, ensuring proper communication with a TPM 2.0 module compatible with the 17-pin header, our system will be fully compatible with Windows 11 security requirements.
4. The Environmental and Financial Argument I completely agree with your stance on environmental responsibility! Ecology: Continuing to use perfectly functional hardware instead of prematurely discarding it is the most responsible approach. The waste of metals and plastics, as well as the energy invested in manufacturing a new computer, is a huge environmental footprint that can be avoided. Economics: Upgrading to 13th or 14th gen (or to AMD AM5) requires a $1000+ investment in a new motherboard, CPU, and RAM. This stands against $10??20 for a TPM module and a few minutes to flash the BIOS. It is absurd to block functional hardware when a software solution (a new BIOS) and a minimal hardware module can solve the problem. This is purely a marketing hurdle, not a technical one. Thank you again for the insightful questions! |
|||
|
|||
|
Post Reply
|
Page 123 5> |
Tweet
|
| Forum Jump | Forum Permissions You cannot post new topics in this forum You cannot reply to topics in this forum You cannot delete your posts in this forum You cannot edit your posts in this forum You cannot create polls in this forum You cannot vote in polls in this forum |
Topic Options