This tutorial will show you how to clear the Trusted Platform Module (TPM) security processor to reset it back to a default state.
Trusted Platform Module (TPM) technology is designed to provide hardware-based, security-related functions. A TPM chip is a secure crypto-processor that is designed to carry out cryptographic operations. The chip includes multiple physical security mechanisms to make it tamper resistant, and malicious software is unable to tamper with the security functions of the TPM.
You can clear the TPM as a troubleshooting step, or as a final preparation before a clean installation of a new operating system. Preparing for a clean installation in this way helps ensure that the new operating system can fully deploy any TPM-based functionality that it includes, such as attestation. However, even if the TPM isn't cleared before a new operating system is installed, most TPM functionality will probably work correctly.
Clearing the TPM resets it to an unowned state. After you clear the TPM, the Windows operating system will automatically reinitialize it and take ownership again.
Precautions to take before clearing the TPM
Clearing the TPM can result in data loss. To protect against such loss, review the following precautions:
- Clearing the TPM causes you to lose all created keys associated with the TPM, and data protected by those keys, such as a virtual smart card or a sign-in PIN. Make sure that you have a backup and recovery method for any data that is protected or encrypted by the TPM.
- Don't clear the TPM on a device you don't own, such as a work or school PC, without being instructed to do so by your IT administrator.
- If you want to temporarily suspend TPM operations on Windows 11, you can turn off the TPM.
- Always use functionality in the operating system (such as TPM.msc) to the clear the TPM. Don't clear the TPM directly from UEFI.
- Because your TPM security hardware is a physical part of your computer, before clearing the TPM, you might want to read the manuals or instructions that came with your computer, or search the manufacturer's website.
Troubleshoot the TPM - Windows Security
Learn how to view and troubleshoot the Trusted Platform Module (TPM).
learn.microsoft.com
Security Processor troubleshooting - Microsoft Support
support.microsoft.com
Clear-Tpm (TrustedPlatformModule)
Use this topic to help manage Windows and Windows Server technologies with Windows PowerShell.
learn.microsoft.com
You must be signed in as an administrator to clear the TPM.
Clearing the TPM will remove the PIN for all accounts on the computer.
Users that sign in to Windows 11 with a PIN may be prompted to set up Windows Hello or their PIN again on the sign-in screen. You will need to know your account's password to do this.
Contents
- Option One: Clear TPM in Windows Security
- Option Two: Clear TPM in TPM Management
- Option Three: Clear TPM using Command
1 Open Windows Security.
2 Click/tap on Device security. (see screenshot below)
3 Under Security processor, click/tap on the Security processor details link. (see screenshot below)
4 Under Status, click/tap on the Security processor troubleshooting link. (see screenshot below)
5 Under Clear TPM, click/tap on Select (if available), and select why you are clearing the TPM. (see screenshot below)
6 Under Clear TPM, click/tap on the Clear TPM button. (see screenshots below)
7 Click/tap on Clear and restart to confirm. (see screenshot below)
8 If prompted by UAC, click/tap on Yes to approve. (see screenshot below)
9 The computer will now restart to clear the TPM.
During the restart, you might be prompted by the UEFI to press a button to confirm that you wish to clear the TPM.
After the device restarts, your TPM will be automatically prepared for use by Windows.
1 Open Trusted Platform Module (TPM) Management (tpm.msc).
2 Click/tap on Clear TPM in the right Actions pane. (see screenshot below)
3 Click/tap on Restart to confirm. (see screenshot below)
4 You will now be notified "Windows will shut down in less than a minute". You can click/tap on Close if you like. (see screenshot below)
5 The computer will automatically restart to clear the TPM.
During the restart, you might be prompted by the UEFI to press a button to confirm that you wish to clear the TPM.
After the device restarts, your TPM will be automatically prepared for use by Windows.
1 Open Windows Terminal (Admin), and select Windows PowerShell.
2 Copy and paste the command below into Windows Terminal (Admin), and press Enter. (see screenshot below)
Clear-TPM3 Restart the computer to apply.
During the restart, you might be prompted by the UEFI to press a button to confirm that you wish to clear the TPM.
After the device restarts, your TPM will be automatically prepared for use by Windows.
That's it,
Shawn Brink
Related Tutorials
- Enable or Disable Clear TPM button in Windows Security in Windows 11
- Check TPM version in Windows 10 and Windows 11
- How to Check if Windows PC has a Trusted Platform Module (TPM) Chip
- Bypass Windows 11 TPM 2.0 and CPU System Requirements
- Run TPM Troubleshooter in Windows 11
- Install or Uninstall TPM Diagnostics Tool in Windows 11
Attachments
Last edited:
